Randomized traffic selection for flow deception in IPsec ad-hoc and cloaked networks
US11128608B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 25, 2018 |
| Grant date | Sep 21, 2021 |
| Priority date | — |
| Expiry date | Jul 20, 2039 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04W84/18
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
In randomized traffic selection in a IPsec network, a source node sends a packet to a destination node. The packet is encapsulated with an application specific metadata header and the source node encapsulates the packet in a transport protocol header (UDP/TCP). The application specific metadata header includes information such as a final destination node, a configured number of hops, a current hop count. A security association associated with an intermediate node is randomly selected by a randomized traffic selector algorithm. The security association is randomly selected from the list of security associations. Upon receiving the packet at the intermediate node, a current hop count is incremented. It is determined that the current hop count is equal to the configured number of hops. The packet is sent to the destination node via the intermediate node based on the randomly selected security association.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.