公开(公告)号：US20230163974A1

公开(公告)日：2023-05-25

申请号：US17989965

申请日：2022-11-18

Applicant: PACKETFABRIC, INC.

Inventor： Nicholas Mainardi

IPC: H04L9/32 ,  H04L9/08

CPC classification number: H04L9/3242 ,  H04L9/085 ,  H04L9/3247 ,  H04L2209/46

Abstract: A method for message authentication includes computing a first secret data and a second secret data using a signing key associated with a first communication message. The method includes splitting the first secret data and the second secret data into shares among a plurality of key holders n for storage at the plurality of key holders n. The method includes receiving a reconstruction request to compute a hash-based message authentication code (HMAC) signature for the first communication message employing the shares from at least t≤n of the plurality of key holders n to compute the signature with a Secure Multi-party Computation (SMC) protocol. Further the method includes computing the signature using the shares from the at least t≤n of the plurality of key holders n as inputs to the SMC protocol in place of the signing key.

公开(公告)号：US20230370526A1

公开(公告)日：2023-11-16

申请号：US18124232

申请日：2023-03-21

Applicant: Cisco Technology, Inc. ,  PacketFabric, Inc.

Inventor： Patrice Brissette ,  Jiri Chaloupka ,  Robert Stephen Rodgers ,  Bart Van De Velde ,  David Delano Ward ,  Kenneth Gray

IPC: H04L67/141 ,  H04L61/5007 ,  H04L45/02 ,  H04L45/00

CPC classification number: H04L67/141 ,  H04L61/5007 ,  H04L45/04 ,  H04L45/72

Abstract: Techniques for devices in autonomous systems to utilize a protocol, such as a Border Gateway Protocol (BGP), to signal intent to instantiate services for establishing connections between the devices. For instance, first device(s) in a first autonomous system (AS) may determine to establish a connection with a second AS. The first device(s) may encode a service key into an Internet Protocol (IP) address where the service key indicates a service that is to be provisioned on second device(s) in the second AS. The first device(s) system may then advertise the IP address host-route using BGP, and the second device(s) may receive the BGP advertisement. The second device(s) may decode the service key from the IP address, and provision the service to establish the connection between the autonomous systems. Thus, the devices in may leverage existing protocols to signal intent to instantiate services and establish connections between autonomous systems.