Method and apparatus for using digital signatures to filter packets in a network
US6389532B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Apr 20, 1998 |
| Grant date | May 14, 2002 |
| Priority date | — |
| Expiry date | Apr 20, 2018 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/126
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method and apparatus for filtering packets uses digital signatures to filter packets in a network. A filter point, such as a router or firewall to an intranet, receives a packet including a header, detects the existence of a signature in the header, tests the validity of the signature using a public key, and forwards the packet in accordance with the validity of the signature. A sender uses a private key obtained from an owner to generate the signature, which is created by encrypting a fingerprint which corresponds to the data in the packet. Public keys are created by an owner which installs them in a domain name system or a certification server. Private keys are also created by the owner but are disseminated only to authorized senders. A method and apparatus for sending packets stores a private key in a memory of the data processor, generates a signature using the private key, installs the signature into a header of a packet; and sends the packet.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.