Method and apparatus for protecting the routing of data packets
US8181014B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | May 9, 2008 |
| Grant date | May 15, 2012 |
| Priority date | — |
| Expiry date | May 31, 2029 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L69/22
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method and apparatus for protecting the routing of data packets in a packet data network. When a first end-host sends an address query to a DNS server system regarding a second end-host, the DNS server system responds by providing a destination parameter containing an encrypted destination address associated with the second end-host. Thereby, the first end-host is able to get across data packets to the second end-host by attaching the destination parameter to each transmitted data packet. A router in the packet data network admits a received packet if a destination parameter is attached to the packet including a valid destination address encrypted by a key dependent on a distributed master encryption key. Otherwise, the router discards the packet if no such valid destination address can be derived from the packet by applying decryption to the destination parameter.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.