公开(公告)号：US11316869B2

公开(公告)日：2022-04-26

申请号：US16709532

申请日：2019-12-10

Applicant: Cisco Technology, Inc.

Inventor： Craig Thomas Hill ,  Frank Brockners ,  Shwetha Subray Bhandari ,  Chennakesava Reddy Gaddam

IPC: H04L29/06 ,  H04L9/32 ,  H04L9/08

Abstract: Disclosed is a method of establishing secure communications. The method includes receiving an attestation parameter associated with a first peer in a potential peer-to-peer communication, adding the attestation parameter to an MACsec Key Agreement (MKA) protocol key exchange, transmitting the key exchange from the first peer to a second peer in the potential peer-to-peer communication and upon a validation of the attestation parameter by the second peer, enabling secure communication between the first peer and the second peer.

公开(公告)号：US20210391984A1

公开(公告)日：2021-12-16

申请号：US16902081

申请日：2020-06-15

Applicant: Cisco Technology, Inc.

Inventor： Lionel Florit ,  Chennakesava Reddy Gaddam ,  Annu Singh ,  Gaurav Kumar ,  Shwetha Subray Bhandari

IPC: H04L9/08 ,  H04L29/06

Abstract: A first computing node configures for communication with a second computing node according to a secure Media Access Layer (MAC) layer communication protocol. The first computing node transmits a first message, to the second computing node. The first message includes at least a first indication that the first computing node is capable of communicating according to the secure MAC layer communication protocol based on a pre-shared secret key. The first computing nodes determines to communicate with the second computing node according to the secure MAC layer communication protocol based on one of a pre-shared secret key or a distributed shared key. The first computing node, at least in part based on the determining, transmits a second message to the second computing node according to the secure MAC layer communication protocol based on the one of the pre-shared secret key or the distributed shared key.

公开(公告)号：US20210176255A1

公开(公告)日：2021-06-10

申请号：US16709532

申请日：2019-12-10

Applicant: Cisco Technology, Inc.

Inventor： Craig Thomas Hill ,  Frank Brockners ,  Shwetha Subray Bhandari ,  Chennakesava Reddy Gaddam

IPC: H04L29/06 ,  H04L9/08 ,  H04L9/32

Abstract: Disclosed is a method of establishing secure communications. The method includes receiving an attestation parameter associated with a first peer in a potential peer-to-peer communication, adding the attestation parameter to an MACsec Key Agreement (MKA) protocol key exchange, transmitting the key exchange from the first peer to a second peer in the potential peer-to-peer communication and upon a validation of the attestation parameter by the second peer, enabling secure communication between the first peer and the second peer.