公开(公告)号：US10708245B2

公开(公告)日：2020-07-07

申请号：US15833807

申请日：2017-12-06

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Balaji Sankaran ,  Karthikeyan Ramachandran ,  Venkatavaradhan Devarajan ,  Gudiputi Suma Chowdary

IPC: H04L29/06 ,  G06F21/60 ,  H04L9/08 ,  H04L12/46 ,  H04L9/32 ,  H04L12/721

Abstract: Examples disclosed herein relate to use of MACsec to encrypt tunnel data packets. In an example, a MACsec capable device may receive a data packet from a host device for tunneling to a controller. MACsec capable device may encapsulate the data packet with an encapsulation header to generate an encapsulated data packet. The encapsulation header may comprise a destination MAC address reserved for the controller. MACsec capable device may direct the encapsulated data packet to a MACsec engine. MACsec engine may encrypt the encapsulated data packet with the encryption key to generate an encrypted data packet. MACsec capable device may encapsulate the encrypted data packet with a first GRE header. MACsec capable device may send the encrypted data packet with the first GRE header to the controller via a GRE tunnel.

公开(公告)号：US20190173860A1

公开(公告)日：2019-06-06

申请号：US15833807

申请日：2017-12-06

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Balaji Sankaran ,  Karthikeyan Ramachandran ,  Venkatavaradhan Devarajan ,  Gudiputi Suma Chowdary

IPC: H04L29/06 ,  G06F21/60 ,  H04L9/08

Abstract: Examples disclosed herein relate to use of MACsec to encrypt tunnel data packets. In an example, a MACsec capable device may receive a data packet from a host device for tunneling to a controller. MACsec capable device may encapsulate the data packet with an encapsulation header to generate an encapsulated data packet. The encapsulation header may comprise a destination MAC address reserved for the controller. MACsec capable device may direct the encapsulated data packet to a MACsec engine. MACsec engine may encrypt the encapsulated data packet with the encryption key to generate an encrypted data packet. MACsec capable device may encapsulate the encrypted data packet with a first GRE header. MACsec capable device may send the encrypted data packet with the first GRE header to the controller via a GRE tunnel.