Maintaining internet protocol security tunnels
US10999253B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jul 26, 2018 |
| Grant date | May 4, 2021 |
| Priority date | — |
| Expiry date | Feb 18, 2039 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L12/4633
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A network device identifies an Internet Protocol Security (IPsec) tunnel that connects the network device to a remote device and determines that dead peer detection (DPD) is enabled at the network device. The network device receives a first DPD request message from the remote device via the IPsec tunnel, and sends a first DPD response message to the remote device via the IPsec tunnel. The network device determines that a workload of the network device satisfies a threshold amount, and sends one or more encapsulating security payload (ESP) packets that include traffic flow confidentiality (TFC) payload data to the remote device via the IPsec tunnel. The network device determines that the workload of the network device does not satisfy the threshold amount. The network device receives a second DPD request message from the remote device and sends a second DPD response message to the remote device via the IPsec tunnel.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.