Transparent bridge for monitoring crypto-partitioned wide-area network
Abstract
This disclosure is directed to monitoring a crypto-partitioned, or cipher-text, wide-area network (WAN). A first computing device may be situated in a plain-text portion of a first enclave behind a first inline network encryptor (INE). A second device may be positioned in a plain-text portion of a second enclave behind a second INE. The two enclaves may be separated by a cipher-text WAN, over which the two enclaved may communicate. The first computing device may receive a data packet from the second computing device. The first computing device may then determine contents of a header of the data packet. The first computing device may, based at least in part on the contents of the header of the data packet, determine a status of the cipher-text WAN.
- Inventors:
- Issue Date:
- Research Org.:
- Architecture Technology Corporation, Minneapolis, MN (United States)
- Sponsoring Org.:
- USDOE
- OSTI Identifier:
- 1892945
- Patent Number(s):
- 11336659
- Application Number:
- 16/856,843
- Assignee:
- Architecture Technology Corporation (Minneapolis, MN)
- Patent Classifications (CPCs):
-
H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- DOE Contract Number:
- SC0015112
- Resource Type:
- Patent
- Resource Relation:
- Patent File Date: 04/23/2020
- Country of Publication:
- United States
- Language:
- English
Citation Formats
Ramanujan, Ranga, and Burnett, Benjamin L. Transparent bridge for monitoring crypto-partitioned wide-area network. United States: N. p., 2022.
Web.
Ramanujan, Ranga, & Burnett, Benjamin L. Transparent bridge for monitoring crypto-partitioned wide-area network. United States.
Ramanujan, Ranga, and Burnett, Benjamin L. Tue .
"Transparent bridge for monitoring crypto-partitioned wide-area network". United States. https://www.osti.gov/servlets/purl/1892945.
@article{osti_1892945,
title = {Transparent bridge for monitoring crypto-partitioned wide-area network},
author = {Ramanujan, Ranga and Burnett, Benjamin L.},
abstractNote = {This disclosure is directed to monitoring a crypto-partitioned, or cipher-text, wide-area network (WAN). A first computing device may be situated in a plain-text portion of a first enclave behind a first inline network encryptor (INE). A second device may be positioned in a plain-text portion of a second enclave behind a second INE. The two enclaves may be separated by a cipher-text WAN, over which the two enclaved may communicate. The first computing device may receive a data packet from the second computing device. The first computing device may then determine contents of a header of the data packet. The first computing device may, based at least in part on the contents of the header of the data packet, determine a status of the cipher-text WAN.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2022},
month = {5}
}
Works referenced in this record:
IQSM: An end-to-end IntServ QoS signaling mechanism for crypto-partitioned networks
conference, October 2009
- Kaddoura, Maher; Ramanujan, Ranga
- MILCOM 2009 - 2009 IEEE Military Communications Conference
Communication System of Client Terminals and Relay Server and Communication Method
patent-application, July 2008
- Ishikawa, Yuichi; Koide, Toshio
- US Patent Application 11/850899; 20080162929 A1
Dynamically Defined Virtual Private Network tunnels in Hybrid Cloud Environments
patent-application, June 2017
- Hoy, Jeffrey Robert; Iyer, Sreekanth Ramakrishna; Kapadia, Kaushal Kiran
- US Patent Application 14/970507; 20170171158 A1
Method for network communication past encryption devices
patent, November 2015
- Charan, Deborah K.; Bouvin, Taylor; Ramanujan, Ranga S.
- US Patent Document 9,191,377
Processing Of Data Packets Within A Network Element Cluster
patent-application, July 2002
- Halme, Matti; Harjulahti, Esa; Viratnen, Tommi
- US Patent Application 10/013613; 20020097724 A1
Quality of Experience Indicator for Network Diagnosis
patent-application, November 2008
- Menon, Jyotikumar
- US Patent Application 11/743,565; 2008/0276001 Al
System and Method for Conveying Priority Associated with a Communication Among A Plurality of Networks
patent-application, April 2010
- Brewer, Jr., Orlie Thomas; Mohammad, Alimuddin; Ayyagari, Arun
- US Patent Application 12/249,772; 2010/0091650 A1
Low-overhead routing
patent, March 2020
- Ramanujan, Ranga S.; Burnett, Benjamin L.; Trent, Barry A.
- US Patent Document 10,587,509
Packet routing system and method
patent, September 2006
- Matthews, Abraham R.; Weir, Steven
- US Patent Document 7,111,072
Context-aware network and situation management for crypto-partitioned networks
patent, October 2014
- Burnett, Benjamin L.; Charan, Deborah K.; Pozzo, Fabio
- US Patent Document 8,874,719
Securing a Network with Data Flow Processing
patent-application, September 2011
- Korsunsky, Yevgeny; Akerman, Moisey
- US Patent Application 12/982,772; 2011/0214157 A1
Method And Apparatus For Dynamic Load Balancing Over A Network Link Bundle
patent-application, October 2006
- Hilla, Stephen; Potter, Kenneth H.; Marshall, John
- US Patent Application 11/097798; 20060221974 A1
Multi-Level Flow Control
patent-application, January 2015
- Olenz, Randy M.; Slogar, Joseph V.
- US Patent Application 14/513264; 20150029862 A1
Systems and Methods for Providing Quality of Service Via a Flow Controlled Tunnel
patent-application, March 2012
- Jackowski, Steve; Keith, Seth; Testicioglu, Kutluk
- US Patent Application 12/893,025; 2012/0078994 Al
Multipath Traffic Management
patent-application, August 2018
- Milescu, George; Petria, Silviu; Paraschiv, Andra
- US Patent Application 15/756924; 20180248714 A1
Systems And Methods For Multicore Processing Of Data With In-Sequence Delivery
patent-application, February 2014
- Hutchison, Jerry; Stanziola, Christopher
- US Patent Application 13/592939; 20140056307 A1
Processing Data Flows with a Data Flow Processor
patent-application, September 2011
- Korsunsky, Yevgeny; Akerman, Moisey
- US Patent Application 12/983,025; 2011/0238855 Al
High-accuracy Packet Pair For Network Bottleneck Bandwidth Measurement
patent-application, August 2006
- Jourdain, Mathias; Rosenberger, Joel L.; Zuberi, Khawar M.
- US Patent Application 11/058847; 20060182039 A1
Systems and Methods of QOS for Single Stream ICA
patent-application, September 2012
- Ovslannikov, Michale
- US Patent Application 13/413,508; 2012/0230345 Al
Techniques to Support Heterogeneous Network Data Path Discovery
patent-application, May 2016
- Patil, Abhishek Pramod; Cherian, George; Abraham, Santosh Paul
- US Patent Application 14/944554; 20160150459 A1
Methods, networks and nodes for dynamically establishing encrypted communications
patent, April 2019
- Sanders, Clint M.; Charan, Deborah K.; Ramanujan, Ranga S.
- US Patent Document 10,250,388
Rerouting Tunnel Traffic in Communication Networks
patent-application, April 2016
- Klincewicz, John Gregory; Choudhury, Gagan; Meier-Hellstern, Kathleen S.
- US Patent Application 14/50869920160099865 A1
Systems and Methods for Processing Data Flows
patent-application, October 2008
- Kapoor, Harsh; Akerman, Moisey; Justus, Stephen D.
- US Patent Application 11/926,292; 2008/0262990 A
Loop Dampening in a Computer Network
patent-application, December 2013
- Wijnands, Ijsbrand; Olofsson, Stefan
- US Patent Application 13/484,606; 2013/0322436 Al
Method and System for Managing Port Bandwidth in Network Devices
patent-application, October 2016
- Labonte, Francois; Yousef, Muhammad
- US Patent Application 14/685101; 20160301618 A1
Method for network communication past encryption devices
patent, February 2018
- Charan, Deborah K.; Ramanujan, Ranga S.
- US Patent Document 9,887,974
Packet Transmission method and Packet Transmission Rate
patent-application, November 2008
- Shake, Ippel; Fakutoka, Mitsunori; Imajyuka, Wataru
- US Patent Application 10/577,874; 2008/0279181 Al
Detection and repair of permanent pause on flow controlled fabric
patent, August 2016
- Li, Jiangbo; Zhou, Junlan; Xiao, Ke
- US Patent Document 9,407,565
Apparatus and Method for Preventing Network attacks, and Packet Transmission and Reception Processing Apparatus and Method Using the Same
patent-application, June 2011
- Park, Chanho; Kim, Seong Woon; Kim, Sun Wook
- US Patent Application 12/701253; 20110131646 A1
Prioritizing Classes of Network Traffic to Provide a Predetermined Quality of Service
patent-application, March 2013
- Keith, Seth
- US Patent Application 13/535,350; 2013/0077486 A
Systems and Methods for Quality of Service Encrypted Network Traffic
patent-application, February 2012
- Jackowski, Steve; Keith, Seth; Ovsiannikov, Mike
- US Patent Application 12/855,335; 2012/0039337 Al
Context-aware network and situation management for crypto-partitioned networks
patent, August 2017
- Burnett, Benjamin L.; Charan, Deborah K.; Pozzo, Fabio
- US Patent Document 9,736,112
Scalable and automated network-parameter assignment
patent, March 2019
- Wu, John; Bahr, Nathan E.; Ramanujan, Ranga S.
- US Patent Document 10,225,138
Incremental Application Of Resources To Network Traffic Flows Based On Heuristics And Business Policies
patent-application, December 2015
- Caputo II, Pete Joseph; Sella, William Thomas
- US Patent Application 14/800933; 20150358287 A1
Methods and Systems for Creating Protocol Header for Embedded Layer Two Packets
patent-application, December 2017
- Sung, Patrick Ho Wai; Chan, Alex Wing Hong; Ng, Kam Chiu
- US Patent Application 15/180637; 20170359448 A1
Method And Apparatus For Self-learning Of VPNS From Combination Of Unidirectional Tunnels In MPLS/VPN Networks
patent-application, May 2007
- Weill, Ofer; Abramovitz, Assi
- US Patent Application 11/287824; 20070121615 A1
detecting and Preventing Flooding Attacks in a Network Environment
patent-application, October 2016
- Wei, Shaohong; Dong, Gang; Chen, Zhong Qiang
- US Patent Application 15/055995; 20160294865 A1
Method for Network Communication Past Encryption Devices
patent-application, February 2016
- Charan, Deborah K.; Ramanujan, Ranga
- US Patent Application 14/931620; 20160057116 A1
Combining Internet Routing Information with Access Logs to Assess Risk of User Exposure
patent-application, November 2016
- Reddy, Anoop; Bell, Kenneth; Oikonomou, Georgios
- US Patent Application 15/148400; 20160330236 A1
Distributed Packet Flow Inspection and Processing
patent-application, April 2011
- Willebeek-LeMair, Marc; Smith, Brian C.
- US Patent Application 12/911,912; 2011/0099631 Al
Border gateway broker, network and method
patent, December 2015
- Ramanujan, Ranga S.; Trent, Barry A.; Sanders, Clint M.
- US Patent Document 9,225,637
Method and System for Dynamic Secured Group Communication
patent-application, March 2012
- Fluhrer, Scott; Wainner, Warren Scott; Rowles, Sheela
- US Patent Application 13/235,598; 2012/0060029 Al
Context-aware network and situation management for crypto-partitioned networks
patent, October 2019
- Burnett, Benjamin L.; Charan, Deborah K.; Pozzo, Fabio
- US Patent Document 10,454,891
Systems and Methods for Providing Quality of Service Precedence in TCP Congestion Control
patent-application, September 2010
- Plamondon, Robert
- US Patent Application 12/784872; 20100226250 A1
Transmission Control Protocol Flooding Attack Prevention Method and Apparatus
patent-application, May 2012
- Yoon, Seung-Yong; Kim, Byoung-Koo
- US Patent Application 13/287,646; 2012/0117646 Al
Network Coding Theory: Single Sources
journal, January 2005
- Yeung, Raymond W.; Li, Shuo-Yen Robert; Cai, Ning
- Foundations and TrendsĀ® in Communications and Information Theory, Vol. 2, Issue 4
Adaptive multicast network communications
patent, March 2017
- Wu, John; Bahr, Nathan E.; Kaddoura, Maher
- US Patent Document 9,602,296
Mobile Communication Devices and Deciphering Methods
patent-application, July 2012
- Cheng, Tsung-Yo
- US Patent Application 13/105,119; 2012/0170744 Al
Routing with opportunistically coded exchanges in wireless mesh networks
conference, January 2006
- Ni, Bin; Santhapuri, Naveen; Zhong, Zifei
- 2006 2nd IEEE Workshop on Wireless Mesh Networks
Reliable transport protocol providing receiver-based congestion control
patent, August 2011
- Ramanujan, Ranga S.; Carl, Richard H.; Trent, Barry A.
- US Patent Document 7,995,475
Systems and Method for Processing Data Flows
patent-application, September 2012
- Kapoor, Harsh; Akerman, Moisey; Justus, Stephen D.
- US Patent Application 13/416,647; 2012/0240185 Al
Receiver based congestion control
patent, September 2003
- Hadi Salim, Jamal; Nandy, Biswajit; Seddigh, Nabil
- US Patent Document 6,625,118
Method And Apparatus For Setting Ciphering Activation Time In A Wireless Communications System
patent-application, November 2007
- Jiang, Sam Shiaw-Shiang; Kuo, Richard Lee-Chee
- US Patent Application 11/798001; 20070265875 A1
Transparent Bridge for Monitoring Crypto-Partitioned Wide-Area Network
patent-application, March 2018
- Ramanujan, Ranga; Burnett, Benjamin L.
- US Patent Application 15/262979; 20180077171 A1
Node, Network Controller, and Associated Methods for Routing Data Packets in a Network
patent-application, August 2016
- Ashwood-Smith, Peter
- US Patent Application 14/610608; 20160226758 A1
Adaptive multicast network communications
patent, October 2015
- Wu, John; Bahr, Nathan E.; Kaddoura, Maher
- US Patent Document 9,160,553