公开(公告)号：US11316869B2

公开(公告)日：2022-04-26

申请号：US16709532

申请日：2019-12-10

Applicant: Cisco Technology, Inc.

Inventor： Craig Thomas Hill ,  Frank Brockners ,  Shwetha Subray Bhandari ,  Chennakesava Reddy Gaddam

IPC: H04L29/06 ,  H04L9/32 ,  H04L9/08

Abstract: Disclosed is a method of establishing secure communications. The method includes receiving an attestation parameter associated with a first peer in a potential peer-to-peer communication, adding the attestation parameter to an MACsec Key Agreement (MKA) protocol key exchange, transmitting the key exchange from the first peer to a second peer in the potential peer-to-peer communication and upon a validation of the attestation parameter by the second peer, enabling secure communication between the first peer and the second peer.

公开(公告)号：US20210176255A1

公开(公告)日：2021-06-10

申请号：US16709532

申请日：2019-12-10

Applicant: Cisco Technology, Inc.

Inventor： Craig Thomas Hill ,  Frank Brockners ,  Shwetha Subray Bhandari ,  Chennakesava Reddy Gaddam

IPC: H04L29/06 ,  H04L9/08 ,  H04L9/32

Abstract: Disclosed is a method of establishing secure communications. The method includes receiving an attestation parameter associated with a first peer in a potential peer-to-peer communication, adding the attestation parameter to an MACsec Key Agreement (MKA) protocol key exchange, transmitting the key exchange from the first peer to a second peer in the potential peer-to-peer communication and upon a validation of the attestation parameter by the second peer, enabling secure communication between the first peer and the second peer.

公开(公告)号：US20200296033A1

公开(公告)日：2020-09-17

申请号：US16889589

申请日：2020-06-01

Applicant: Cisco Technology, Inc.

Inventor： Craig Thomas Hill ,  James Guichard ,  Darrin Joseph Miller ,  Carlos M. Pignataro

IPC: H04L12/723 ,  H04L12/725 ,  H04L12/721 ,  H04L12/715 ,  H04L29/08 ,  H04L12/911

Abstract: In a first enclave of a label switching network (LSN), a protocol data unit (PDU) of the LSN is formatted to include a network service field specifying a service to be applied to the PDU. The service field can be positioned between PDU data link layer and network layer fields. The PDU specifies PDU routing/forwarding information for a path in the LSN ending in an LSN second enclave, and routing/forwarding for a destination between path segments in a non-LSN. The PDU is communicated from the first enclave, via the non-LSN, to the second enclave in accordance with the routing/forwarding information for the destination between path segments in the non-LSN. In the second enclave, each network service specified for the PDU is determined and then applied to the PDU. The second enclave transmits the network serviced PDU from the second enclave in accordance with the routing/forwarding information of the PDU in the label switching network.

公开(公告)号：US20190097924A1

公开(公告)日：2019-03-28

申请号：US16204464

申请日：2018-11-29

Applicant: Cisco Technology, Inc.

Inventor： Craig Thomas Hill ,  James Guichard ,  Darrin Joseph Miller ,  Carlos M. Pignataro

IPC: H04L12/723 ,  H04L12/911 ,  H04L29/08 ,  H04L12/725 ,  H04L12/721 ,  H04L12/715 ,  H04L29/06

Abstract: In a first enclave of a label switching network (LSN), a protocol data unit (PDU) of the LSN is formatted to include a network service field specifying a service to be applied to the PDU. The service field can be positioned between PDU data link layer and network layer fields. The PDU specifies PDU routing/forwarding information for a path in the LSN ending in an LSN second enclave, and routing/forwarding for a destination between path segments in a non-LSN. The PDU is communicated from the first enclave, via the non-LSN, to the second enclave in accordance with the routing/forwarding information for the destination between path segments in the non-LSN. In the second enclave, each network service specified for the PDU is determined and then applied to the PDU. The second enclave transmits the network serviced PDU from the second enclave in accordance with the routing/forwarding information of the PDU in the label switching network.

公开(公告)号：US20180062984A1

公开(公告)日：2018-03-01

申请号：US15249260

申请日：2016-08-26

Applicant: Cisco Technology, Inc.

Inventor： Craig Thomas Hill ,  James Guichard ,  Darrin Joseph Miller ,  Carlos M. Pignataro

IPC: H04L12/723 ,  H04L12/911 ,  H04L29/08

CPC classification number: H04L45/50 ,  H04L45/306 ,  H04L45/34 ,  H04L45/38 ,  H04L45/566 ,  H04L45/64 ,  H04L47/825 ,  H04L67/327 ,  H04L69/22 ,  H04L69/321

Abstract: In a first enclave of a label switching network (LSN), a protocol data unit (PDU) of the LSN is formatted to include a network service field specifying a service to be applied to the PDU. The service field can be positioned between PDU data link layer and network layer fields. The PDU specifies PDU routing/forwarding information for a path in the LSN ending in an LSN second enclave, and routing/forwarding for a destination between path segments in a non-LSN. The PDU is communicated from the first enclave, via the non-LSN, to the second enclave in accordance with the routing/forwarding information for the destination between path segments in the non-LSN. In the second enclave, each network service specified for the PDU is determined and then applied to the PDU. The second enclave transmits the network serviced PDU from the second enclave in accordance with the routing/forwarding information of the PDU in the label switching network.