公开(公告)号：US09686186B2

公开(公告)日：2017-06-20

申请号：US14693244

申请日：2015-04-22

Applicant: Cisco Technology, Inc.

Inventor： Jose Liste ,  Brian Weis

IPC: H04W12/00 ,  H04L12/721 ,  H04L29/06

CPC classification number: H04L45/38 ,  H04L63/00 ,  H04L63/0428 ,  H04L63/10 ,  H04L69/22

Abstract: A network device receives packets for one or more traffic flows to be sent into a network. The network device computes a flow identifier for each of the one or more traffic flows based on information contained in one or more headers of the packets for each of the one or more traffic flows and based on at least one value that is changed on an ongoing basis. The packets for each of the one or more traffic flows are encrypted to produce encrypted packets for each of the one or more traffic flows. An encapsulation is added to the encrypted packets for the one or more traffic flows. The flow identifier is included in a field of the encapsulation for a corresponding traffic flow.

公开(公告)号：US20160315853A1

公开(公告)日：2016-10-27

申请号：US14693244

申请日：2015-04-22

Applicant: Cisco Technology, Inc.

Inventor： Jose Liste ,  Brian Weis

IPC: H04L12/721 ,  H04L29/12 ,  H04L29/06

CPC classification number: H04L45/38 ,  H04L63/00 ,  H04L63/0428 ,  H04L63/10 ,  H04L69/22

Abstract: A network device receives packets for one or more traffic flows to be sent into a network. The network device computes a flow identifier for each of the one or more traffic flows based on information contained in one or more headers of the packets for each of the one or more traffic flows and based on at least one value that is changed on an ongoing basis. The packets for each of the one or more traffic flows are encrypted to produce encrypted packets for each of the one or more traffic flows. An encapsulation is added to the encrypted packets for the one or more traffic flows. The flow identifier is included in a field of the encapsulation for a corresponding traffic flow.

Abstract translation: 网络设备接收要发送到网络中的一个或多个业务流的分组。 网络设备基于针对一个或多个业务流中的每一个的分组的一个或多个报头中包含的信息来计算一个或多个业务流中的每一个的流标识符，并且基于在正在进行中的变化中的至少一个值 基础。 对一个或多个业务流中的每一个的数据包进行加密，以为一个或多个业务流中的每一个产生加密的分组。 对一个或多个流量流的加密分组添加封装。 流标识符被包括在用于相应业务流的封装的字段中。