公开(公告)号：WO2022005992A1

公开(公告)日：2022-01-06

申请号：PCT/US2021/039411

申请日：2021-06-28

Applicant: AMAZON TECHNOLOGIES, INC.

Inventor： TALUR, Dheerendra ,  KULKARNI, Milind Madhukar ,  DILLARD, Lee Spencer

IPC: H04L12/725 ,  H04L12/721 ,  H04L12/717 ,  H04L29/08 ,  H04L45/306 ,  H04L45/38 ,  H04L45/42 ,  H04L47/2441 ,  H04L47/32 ,  H04L67/10 ,  H04L67/20 ,  H04L67/2819 ,  H04L69/22 ,  H04L69/40

Abstract: Systems and methods are provided to add flow validation information to packets of network traffic. Each packet can have flow validation information added corresponding to the source and destination of the packet. A stateful network routing service may intercept packets and obtain or generate flow validation information based on the source and destination of the packet. The stateful network routing service may add the information to the packet and transmit the enriched packet to a network appliance. The stateful network routing service may receive a second enriched packet from the network appliance. The stateful network routing service can compare the enriched packet with the second enriched packet. Based on the comparison of the enriched packets, the stateful network routing service can determine whether the packet should be transmitted to the destination or dropped.