利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

11 条记录 (耗时 0.029 秒)

    Agile network protocol for secure communications with assured system availability
    2.
    发明授权
    Agile network protocol for secure communications with assured system availability 有权
    用于安全通信的敏捷网络协议,确保系统可用性

    公开(公告)号:US07010604B1

    公开(公告)日:2006-03-07

    申请号:US09429643

    申请日:1999-10-29

    申请人: Edmund Colby Munger Vincent J. Sabio Robert Dunham Short, III Virgil D. Gligor Douglas Charles Schmidt

    发明人: Edmund Colby Munger Vincent J. Sabio Robert Dunham Short, III Virgil D. Gligor Douglas Charles Schmidt

    IPC分类号: G06F15/16

    CPC分类号: H04L61/2539 H04L9/065 H04L29/12216 H04L29/12301 H04L29/1232 H04L29/12801 H04L45/20 H04L45/24 H04L61/2007 H04L61/2076 H04L61/2092 H04L61/30 H04L61/6004 H04L63/0272 H04L63/04 H04L63/0407 H04L63/0421 H04L63/0428 H04L63/0435 H04L63/1441 H04L63/1491 H04M3/42008

    摘要: A plurality of computer nodes communicates using seemingly random IP source and destination addresses and (optionally) a seemingly random discriminator field. Data packets matching criteria defined by a moving window of valid addresses are accepted for further processing, while those that do not meet the criteria are rejected. In addition to “hopping” of IP addresses and discriminator fields, hardware addresses such as Media Access Control addresses can be hopped. The hopped addresses are generated by random number generators having non-repeating sequence lengths that are easily determined a-priori, which can quickly jump ahead in sequence by an arbitrary number of random steps and which have the property that future random numbers are difficult to guess without knowing the random number generator's parameters. Synchronization techniques can be used to re-establish synchronization between sending and receiving-nodes. These techniques include a self-synchronization technique in which a sync field is transmitted as part of each packet, and a “checkpoint” scheme by which transmitting and receiving nodes can advance to a known point in their hopping schemes. A fast-packet reject technique based on the use of presence vectors is also described. A distributed transmission path embodiment incorporates randomly selected physical transmission paths.

    摘要翻译: 多个计算机节点使用看似随意的IP源和目的地址和(可选地)看似随机的鉴别符字段进行通信。 由有效地址的移动窗口定义的数据包匹配条件被接受进一步处理,而不符合标准的数据包将被拒绝。 除了IP地址和鉴别字段的“跳”之外,还可以跳过媒体访问控制地址等硬件地址。 跳跃地址由具有非重复序列长度的随机数生成器产生,其可以先前容易地确定,其可以通过任意数量的随机步骤快速地向前跳跃,并且具有将来随机数难以猜测的性质 不知道随机数生成器的参数。 同步技术可用于重新发送和接收节点之间的同步。 这些技术包括其中同步字段作为每个分组的一部分被发送的自同步技术,以及发送和接收节点可以通过其发送到其跳频方案中的已知点的“检查点”方案。 还描述了基于使用存在向量的快速分组拒绝技术。 分布式传输路径实施例包括随机选择的物理传输路径。

    Agile network protocol for secure communications with assured system availability
    5.
    发明授权
    Agile network protocol for secure communications with assured system availability 有权
    用于安全通信的敏捷网络协议,确保系统可用性

    公开(公告)号:US07133930B2

    公开(公告)日:2006-11-07

    申请号:US10401551

    申请日:2003-03-31

    申请人: Edmund Colby Munger Vincent J. Sabio Robert Dunham Short Virgil D. Gligor Douglas Charles Schmidt

    发明人: Edmund Colby Munger Vincent J. Sabio Robert Dunham Short Virgil D. Gligor Douglas Charles Schmidt

    IPC分类号: G06F15/16 G06F17/00

    CPC分类号: H04L61/2539 H04L9/065 H04L29/12216 H04L29/12301 H04L29/1232 H04L29/12801 H04L45/20 H04L45/24 H04L61/2007 H04L61/2076 H04L61/2092 H04L61/30 H04L61/6004 H04L63/0272 H04L63/04 H04L63/0407 H04L63/0421 H04L63/0428 H04L63/0435 H04L63/1441 H04L63/1491 H04M3/42008

    摘要: A plurality of computer nodes communicates using seemingly random IP source and destination addresses and (optionally) a seemingly random discriminator field. Data packets matching criteria defined by a moving window of valid addresses are accepted for further processing, while those that do not meet the criteria are rejected. In addition to “hopping” of IP addresses and discriminator fields, hardware addresses such as Media Access Control addresses can be hopped. The hopped addresses are generated by random number generators having non-repeating sequence lengths that are easily determined a-priori, which can quickly jump ahead in sequence by an arbitrary number of random steps and which have the property that future random numbers are difficult to guess without knowing the random number generator's parameters. Synchronization techniques can be used to re-establish synchronization between sending and receiving nodes. These techniques include a self-synchronization technique in which a sync field is transmitted as part of each packet, and a “checkpoint” scheme by which transmitting and receiving nodes can advance to a known point in their hopping schemes. A fast-packet reject technique based on the use of presence vectors is also described. A distributed transmission path embodiment incorporates randomly selected physical transmission paths.

    摘要翻译: 多个计算机节点使用看似随意的IP源和目的地址和(可选地)看似随机的鉴别符字段进行通信。 由有效地址的移动窗口定义的数据包匹配条件被接受进一步处理,而不符合标准的数据包将被拒绝。 除了IP地址和鉴别字段的“跳”之外,还可以跳过媒体访问控制地址等硬件地址。 跳跃地址由具有非重复序列长度的随机数生成器产生,其可以先前容易地确定,其可以通过任意数量的随机步骤快速地向前跳跃,并且具有将来随机数难以猜测的性质 不知道随机数生成器的参数。 同步技术可用于重新建立发送和接收节点之间的同步。 这些技术包括其中同步字段作为每个分组的一部分被发送的自同步技术,以及发送和接收节点可以通过其发送到其跳频方案中的已知点的“检查点”方案。 还描述了基于使用存在向量的快速分组拒绝技术。 分布式传输路径实施例包括随机选择的物理传输路径。