Path signatures for data flows
    21.
    发明授权

    公开(公告)号:US11102121B2

    公开(公告)日:2021-08-24

    申请号:US16661540

    申请日:2019-10-23

    Abstract: This disclosure describes various methods, systems, and devices related to identifying path changes of data flows in a network. An example method includes receiving, at a node, a packet including a first path signature. The method further includes generating a second path signature by inputting the first path signature and one or more node details into a hash function. The method includes replacing the first path signature with the second path signature in the packet. The packet including the second path signature is forwarded by the node.

    Cumulative schemes for network path proof of transit

    公开(公告)号:US10187209B2

    公开(公告)日:2019-01-22

    申请号:US14992112

    申请日:2016-01-11

    Abstract: A system and methods are provided for verifying proof of transit of network traffic through a plurality of network nodes in a network. In one embodiment, each network node reads a first value and a second value from in-band metadata of packet, and generates, using a cryptographic key that is unique to each respective network node, an encryption result based on the first value. An updated second value is generated based on the second value read from the packet and the encryption result. Each network node writes the updated second value to the in-band metadata of the packet, and forwards the packet in the network. In another embodiment, a secret sharing scheme is employed by each network node computes a portion of verification information using a unique share of a secret and based on the packet specific information.

Patent Agency Ranking