Patent · US Active

Method and apparatus for enhanced distribution of security keys

US9882714B1 · kind B1 · utility

10Cited by

17References

11Claims

0Family size

Assignee

Certes Networks, Inc. · US

Inventors

Todd Lawrence Cignetti · Ashburn, US
Miles S. Krivoshia · Pittsburgh, US
Ganesh Murugesan · Bengaluru, IN
Timothy J. Megela · McMurray, US

Key dates

Filing date	Mar 10, 2014
Grant date	Jan 30, 2018
Priority date	—
Expiry date	Mar 10, 2034

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/068
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

In many secure communication systems, group keys are updated on a regular basis in order to maintain high security level. Decryption and encryption keys are typically updated simultaneously in policy enforcement points (PEPs). Such approach makes the respective communication system prone to dropping of network traffic. According to at least one embodiment, re-keying is performed by installing, at a first phase, a new decryption key at the PEPs without removing an old decryption key previously installed in the PEPs. At a second phase, a new encryption corresponding to the new decryption key is installed and an old encryption key corresponding to the old decryption is removed. At a third stage, the old decryption key and any other old decryption keys are removed from the PEPs.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.