On-demand security association management
US10848524B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Feb 23, 2018 |
| Grant date | Nov 24, 2020 |
| Priority date | — |
| Expiry date | Nov 12, 2038 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2212/00
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A mapping server provisions network elements to optimize the cryptographic resources of a computer network. The mapping server obtains from a source network element, a request for a source endpoint to communicate with a destination endpoint across the computer network. The mapping server determines a cryptographic policy based on the source endpoint, the destination endpoint, and an availability of cryptographic resources on the network elements. The mapping server identifies a destination network element based on the cryptographic policy. The destination network element is associated with the destination endpoint. The mapping server selects a security association based on the cryptographic policy to secure a communication from the source endpoint to the destination endpoint. The security association secures the communication between the source network element and the destination network element. The mapping server provides the security association to the source network element along with a network address of the destination network element.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.