公开(公告)号：US20140208094A1

公开(公告)日：2014-07-24

申请号：US13748244

申请日：2013-01-23

申请人： Carl Rajsic ,  Hansen Chan

发明人： Carl Rajsic ,  Hansen Chan

IPC分类号： H04L29/06

CPC分类号： H04L63/0428 ,  H04L63/166

摘要： A method for providing control plane encryption in layer 3 networks is disclosed. The method for providing control plane encryption in layer 3 networks includes for a network having a subset of network elements forming a secured domain; the steps of at a network element which is in the secured domain, encrypting all unencrypted Layer 3 packets as they egress an encryption enable egress interface; unencrypting all encrypted Layer 3 packets as they egress an egress interface is not enabled for encryption; and leaving encrypted all encrypted Layer 3 packets as they egress an encryption enable egress interface. A system and machine readable storage media are also disclosed.

摘要翻译： 公开了一种在3层网络中提供控制平面加密的方法。 在第3层网络中提供控制平面加密的方法包括：具有构成安全域的网络元素子集的网络; 在安全域中的网元处的步骤，在加密使能出口接口出口时对所有未加密的第3层报文进行加密; 加密所有加密的第3层数据包，因为它们离开出口接口未启用加密; 并保留所有加密的第3层数据包，因为它们出口加密使能出口接口。 还公开了一种系统和机器可读存储介质。

公开(公告)号：US20110302027A1

公开(公告)日：2011-12-08

申请号：US12795721

申请日：2010-06-08

申请人： Alp Dibirdi ,  Hansen Chan

发明人： Alp Dibirdi ,  Hansen Chan

IPC分类号： G06Q30/00 ,  G06Q50/00 ,  G06Q10/00 ,  H04L12/26

CPC分类号： G06Q30/0251 ,  G06Q30/0276 ,  H04L43/0876 ,  H04L45/00 ,  H04L45/125 ,  H04L45/245 ,  H04L47/125 ,  H04L47/41

摘要： Various embodiments relate to a communications system and related method of advertising available bandwidth capacities of leased links. After leasing a link to an operator device, a provider or operator may monitor the available capacity of the leased link and generate an advertising frame when the actual available capacity is below the defined leased capacity of the link. The advertising frame may be an L2 Ethernet frame in a form similar to the routing protocol used in the communications network to avoid additional strain and complexity in the network due to additional protocols for traffic engineering. After propagating the new information throughout the network using the advertising frame operator devices may redirect or shape their traffic of data in response to the updated available capacity on the leased link.

摘要翻译： 各种实施例涉及通信系统和广告租用链路的可用带宽容量的相关方法。 在租赁到操作者设备的链接之后，当实际可用容量低于链路的定义的租用容量时，提供商或运营商可以监视租用链路的可用容量并生成广告帧。 广告框可以是类似于在通信网络中使用的路由协议的形式的L2以太网帧，以避免由于用于流量工程的附加协议而在网络中的附加应变和复杂性。 在使用广告框传播整个网络中的新信息之后，运营商设备可以根据租用链路上更新的可用容量来重定向或调整其数据流量。

公开(公告)号：US09036474B2

公开(公告)日：2015-05-19

申请号：US12795721

申请日：2010-06-08

申请人： Alp Dibirdi ,  Hansen Chan

发明人： Alp Dibirdi ,  Hansen Chan

IPC分类号： H04L12/26 ,  H04L12/28 ,  G06Q30/02 ,  H04L12/701 ,  H04L12/803 ,  H04L12/891 ,  H04L12/709 ,  H04L12/729

CPC分类号： G06Q30/0251 ,  G06Q30/0276 ,  H04L43/0876 ,  H04L45/00 ,  H04L45/125 ,  H04L45/245 ,  H04L47/125 ,  H04L47/41

摘要： Various embodiments relate to a communications system and related method of advertising available bandwidth capacities of leased links. After leasing a link to an operator device, a provider or operator may monitor the available capacity of the leased link and generate an advertising frame when the actual available capacity is below the defined leased capacity of the link. The advertising frame may be an L2 Ethernet frame in a form similar to the routing protocol used in the communications network to avoid additional strain and complexity in the network due to additional protocols for traffic engineering. After propagating the new information throughout the network using the advertising frame operator devices may redirect or shape their traffic of data in response to the updated available capacity on the leased link.

摘要翻译： 各种实施例涉及通信系统和广告租用链路的可用带宽容量的相关方法。 在租赁到操作者设备的链接之后，当实际可用容量低于链路的定义的租用容量时，提供商或运营商可以监视租用链路的可用容量并生成广告帧。 广告框可以是类似于在通信网络中使用的路由协议的形式的L2以太网帧，以避免由于用于流量工程的附加协议而在网络中的附加应变和复杂性。 在使用广告框传播整个网络中的新信息之后，运营商设备可以根据租用链路上更新的可用容量来重定向或调整其数据流量。

公开(公告)号：US20060291378A1

公开(公告)日：2006-12-28

申请号：US11168644

申请日：2005-06-28

申请人： Michael Brotherston ,  Hansen Chan

发明人： Michael Brotherston ,  Hansen Chan

IPC分类号： H04J3/14

CPC分类号： H04L12/2854 ,  H04L12/46 ,  H04L45/00 ,  H04L45/22 ,  H04L45/28

摘要： Communication path redundancy protection systems and methods are disclosed. Multiple communication interfaces having a common address support communications on respective communication paths. One of the interfaces or communication paths is selected as an active interface or path for transferring communication traffic. In the event of a fault associated with the active interface or path, another one of the interfaces or paths is selected to become active. The common address allows redundant interfaces to appear as a single interface to other communication equipment, whereas the multiple interfaces provide redundant path protection using a single piece of communication equipment. When embodiments of the invention are implemented in a gateway router of a core communication network, for example, activity switches between redundant access paths have no effect on routing in the core network.

摘要翻译： 公开了通信路径冗余保护系统和方法。 具有公共地址的多个通信接口支持各个通信路径上的通信。 选择其中一个接口或通信路径作为用于传送通信流量的活动接口或路径。 在与活动接口或路径相关联的故障的情况下，选择另一个接口或路径来激活。 公共地址允许冗余接口作为单个接口显示给其他通信设备，而多个接口使用单个通信设备提供冗余路径保护。 当本发明的实施例在核心通信网络的网关路由器中实现时，例如，冗余访问路径之间的活动交换对核心网络中的路由不起作用。

公开(公告)号：US09106618B2

公开(公告)日：2015-08-11

申请号：US13748244

申请日：2013-01-23

申请人： Carl Rajsic ,  Hansen Chan

发明人： Carl Rajsic ,  Hansen Chan

IPC分类号： H04L29/06

CPC分类号： H04L63/0428 ,  H04L63/166

摘要： A method for providing control plane encryption in layer 3 networks is disclosed. The method for providing control plane encryption in layer 3 networks includes for a network having a subset of network elements forming a secured domain; the steps of at a network element which is in the secured domain, encrypting all unencrypted Layer 3 packets as they egress an encryption enable egress interface; unencrypting all encrypted Layer 3 packets as they egress an egress interface is not enabled for encryption; and leaving encrypted all encrypted Layer 3 packets as they egress an encryption enable egress interface. A system and machine readable storage media are also disclosed.

摘要翻译： 公开了一种在3层网络中提供控制平面加密的方法。 在第3层网络中提供控制平面加密的方法包括：具有构成安全域的网络元素子集的网络; 在安全域中的网元处的步骤，在加密使能出口接口出口时对所有未加密的第3层报文进行加密; 加密所有加密的第3层数据包，因为它们离开出口接口未启用加密; 并保留所有加密的第3层数据包，因为它们出口加密使能出口接口。 还公开了一种系统和机器可读存储介质。