DOE Patents title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Transparent bridge for monitoring crypto-partitioned wide-area network

Abstract

This disclosure is directed to monitoring a crypto-partitioned, or cipher-text, wide-area network (WAN). A first computing device may be situated in a plain-text portion of a first enclave behind a first inline network encryptor (INE). A second device may be positioned in a plain-text portion of a second enclave behind a second INE. The two enclaves may be separated by a cipher-text WAN, over which the two enclaved may communicate. The first computing device may receive a data packet from the second computing device. The first computing device may then determine contents of a header of the data packet. The first computing device may, based at least in part on the contents of the header of the data packet, determine a status of the cipher-text WAN.

Inventors:
;
Issue Date:
Research Org.:
Architecture Technology Corporation, Minneapolis, MN (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
1892945
Patent Number(s):
11336659
Application Number:
16/856,843
Assignee:
Architecture Technology Corporation (Minneapolis, MN)
Patent Classifications (CPCs):
H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
DOE Contract Number:  
SC0015112
Resource Type:
Patent
Resource Relation:
Patent File Date: 04/23/2020
Country of Publication:
United States
Language:
English

Citation Formats

Ramanujan, Ranga, and Burnett, Benjamin L. Transparent bridge for monitoring crypto-partitioned wide-area network. United States: N. p., 2022. Web.
Ramanujan, Ranga, & Burnett, Benjamin L. Transparent bridge for monitoring crypto-partitioned wide-area network. United States.
Ramanujan, Ranga, and Burnett, Benjamin L. Tue . "Transparent bridge for monitoring crypto-partitioned wide-area network". United States. https://www.osti.gov/servlets/purl/1892945.
@article{osti_1892945,
title = {Transparent bridge for monitoring crypto-partitioned wide-area network},
author = {Ramanujan, Ranga and Burnett, Benjamin L.},
abstractNote = {This disclosure is directed to monitoring a crypto-partitioned, or cipher-text, wide-area network (WAN). A first computing device may be situated in a plain-text portion of a first enclave behind a first inline network encryptor (INE). A second device may be positioned in a plain-text portion of a second enclave behind a second INE. The two enclaves may be separated by a cipher-text WAN, over which the two enclaved may communicate. The first computing device may receive a data packet from the second computing device. The first computing device may then determine contents of a header of the data packet. The first computing device may, based at least in part on the contents of the header of the data packet, determine a status of the cipher-text WAN.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2022},
month = {5}
}

Works referenced in this record:

IQSM: An end-to-end IntServ QoS signaling mechanism for crypto-partitioned networks
conference, October 2009


Communication System of Client Terminals and Relay Server and Communication Method
patent-application, July 2008


Dynamically Defined Virtual Private Network tunnels in Hybrid Cloud Environments
patent-application, June 2017


Method for network communication past encryption devices
patent, November 2015


Processing Of Data Packets Within A Network Element Cluster
patent-application, July 2002


Quality of Experience Indicator for Network Diagnosis
patent-application, November 2008


System and Method for Conveying Priority Associated with a Communication Among A Plurality of Networks
patent-application, April 2010


Low-overhead routing
patent, March 2020


Packet routing system and method
patent, September 2006


Context-aware network and situation management for crypto-partitioned networks
patent, October 2014


Securing a Network with Data Flow Processing
patent-application, September 2011


Method And Apparatus For Dynamic Load Balancing Over A Network Link Bundle
patent-application, October 2006


Multi-Level Flow Control
patent-application, January 2015


Systems and Methods for Providing Quality of Service Via a Flow Controlled Tunnel
patent-application, March 2012


Multipath Traffic Management
patent-application, August 2018


Systems And Methods For Multicore Processing Of Data With In-Sequence Delivery
patent-application, February 2014


Processing Data Flows with a Data Flow Processor
patent-application, September 2011


High-accuracy Packet Pair For Network Bottleneck Bandwidth Measurement
patent-application, August 2006


Systems and Methods of QOS for Single Stream ICA
patent-application, September 2012


Techniques to Support Heterogeneous Network Data Path Discovery
patent-application, May 2016


Methods, networks and nodes for dynamically establishing encrypted communications
patent, April 2019


Rerouting Tunnel Traffic in Communication Networks
patent-application, April 2016


Systems and Methods for Processing Data Flows
patent-application, October 2008


Loop Dampening in a Computer Network
patent-application, December 2013


Method and System for Managing Port Bandwidth in Network Devices
patent-application, October 2016


Method for network communication past encryption devices
patent, February 2018


Packet Transmission method and Packet Transmission Rate
patent-application, November 2008


Detection and repair of permanent pause on flow controlled fabric
patent, August 2016


Systems and Methods for Quality of Service Encrypted Network Traffic
patent-application, February 2012


Context-aware network and situation management for crypto-partitioned networks
patent, August 2017


Scalable and automated network-parameter assignment
patent, March 2019


Incremental Application Of Resources To Network Traffic Flows Based On Heuristics And Business Policies
patent-application, December 2015


Methods and Systems for Creating Protocol Header for Embedded Layer Two Packets
patent-application, December 2017


detecting and Preventing Flooding Attacks in a Network Environment
patent-application, October 2016


Method for Network Communication Past Encryption Devices
patent-application, February 2016


Combining Internet Routing Information with Access Logs to Assess Risk of User Exposure
patent-application, November 2016


Distributed Packet Flow Inspection and Processing
patent-application, April 2011


Border gateway broker, network and method
patent, December 2015


Method and System for Dynamic Secured Group Communication
patent-application, March 2012


Context-aware network and situation management for crypto-partitioned networks
patent, October 2019


Systems and Methods for Providing Quality of Service Precedence in TCP Congestion Control
patent-application, September 2010


Transmission Control Protocol Flooding Attack Prevention Method and Apparatus
patent-application, May 2012


Network Coding Theory: Single Sources
journal, January 2005


Adaptive multicast network communications
patent, March 2017


Mobile Communication Devices and Deciphering Methods
patent-application, July 2012


Routing with opportunistically coded exchanges in wireless mesh networks
conference, January 2006


Reliable transport protocol providing receiver-based congestion control
patent, August 2011


Systems and Method for Processing Data Flows
patent-application, September 2012


Receiver based congestion control
patent, September 2003


Method And Apparatus For Setting Ciphering Activation Time In A Wireless Communications System
patent-application, November 2007


Transparent Bridge for Monitoring Crypto-Partitioned Wide-Area Network
patent-application, March 2018


Node, Network Controller, and Associated Methods for Routing Data Packets in a Network
patent-application, August 2016


Adaptive multicast network communications
patent, October 2015