IPC분류정보
국가/구분 |
United States(US) Patent
등록
|
국제특허분류(IPC7판) |
|
출원번호 |
US-0302351
(2002-11-22)
|
등록번호 |
US-7386723
(2008-06-10)
|
발명자
/ 주소 |
- Seada,Karim
- ElGebaly,Hani
|
출원인 / 주소 |
|
대리인 / 주소 |
|
인용정보 |
피인용 횟수 :
17 인용 특허 :
2 |
초록
A robust header compression scheme ("ROHC") compresses IP security ("IPSec") protected IP packets. More specifically, ROHC is applied to portions of an IP packet header prior to IPSec encryption. ROHC may then optionally be applied again to the unencrypted portions of the IP packet.
대표청구항
▼
What is claimed is: 1. A method of securing and compressing a network packet, comprising: applying a first robust header compression scheme to the network packet, the network packet comprising a first packet header, a second packet header and a payload, the first robust header compression scheme be
What is claimed is: 1. A method of securing and compressing a network packet, comprising: applying a first robust header compression scheme to the network packet, the network packet comprising a first packet header, a second packet header and a payload, the first robust header compression scheme being applied to the first packet header to generate an end-to-end compressed packet header, the end-to end compressed packet header, the second packet header and the payload together comprising an end-to-end compressed network packet; encrypting the end-to-end compressed network packet, by adding an encryption header to the end-to-end compressed network packet to generate an encrypted end-to-end compressed network packet, the encrypted end-to-end compressed network packet comprising the encryption header, the end-to-end compressed packet header, the second packet header and the payload; and applying a second robust header compression scheme to the encryption header, the end-to-end compressed packet header and the second packet header in the encrypted end-to-end compressed network packet to generate a hop-by-hop compressed network packet. 2. The method according to claim 1 wherein the first robust header compression scheme and the second robust header compression scheme are Robust Header Compression. 3. The method according to claim 1 wherein encrypting the end-to-end compressed network packet by adding the encryption header to the end-to-end compressed network packet includes applying an IP security protocol header to the compressed network packet. 4. A method of decompressing a compressed and encrypted network packet, the network packet including an encrypted end-to-end compressed network packet, the method comprising: receiving the encrypted end-to-end compressed network packet including an encryption header, an end-to-end compressed packet header, a second packet header and a payload wherein the encryption header, the end-to-end compressed packet header and the payload are included in a hop-by-hop compressed network packet; decrypting the encrypted end-to-end compressed network packet to remove the encryption header and restore the end-to-end compressed packet header, the second packet header and the payload; and applying a first robust header decompression scheme to the end-to-end compressed packet header to restore a first packet header. 5. The method according to claim 4 further comprising applying a second robust header decompression scheme to the hop-by-hop compressed network packet to decompress the hop-by-hop compressed network packet and restore the second packet header. 6. The method according to claim 5 wherein the first robust header decompression scheme and the second robust header decompression scheme are Robust Header Compression. 7. An apparatus for securing and compressing a network packet, comprising: a robust header compression unit capable of applying a first robust header compression scheme to the network packet, the network packet comprising a first packet header, a second packet header and a payload, the first robust header compression scheme being applied to the first packet header to generate an end-to-end compressed packet header, the end-to end compressed packet header, the second packet header and the payload together comprising an end-to-end compressed network packet; an encryption unit capable of adding an encryption header to the end-to-end compressed network packet to generate an encrypted end-to-end compressed network packet, the encrypted compressed network packet comprising the encryption header, the end-to-end compressed packet header, the second packet header and the payload; and a second robust header compression unit capable of compressing the encryption header, the end-to-end compressed packet header and the second packet header in the encrypted end-to-end compressed network packet to generate a hop-by-hop compressed network packet. 8. The apparatus according to claim 7 wherein the first robust header compression scheme and the second robust header compression scheme are Robust Header Compression. 9. The apparatus according to claim 7 wherein the encryption unit is capable of adding the encryption header to the compressed network packet by applying an IP security protocol header to the compressed network packet. 10. An apparatus for decompressing a compressed and encrypted network packet, the network packet including an encrypted end-to-end compressed network packet, the apparatus comprising: a decryption unit capable of decrypting the encrypted end-to-end compressed network packet including an encryption header, an end-to-end compressed packet header, a second packet header and a payload by removing the encryption header and restoring the end-to-end compressed packet header, the second packet header and the payload wherein the encryption header, the end-to-end compressed packet header and the payload are included in a hop-by-hop compressed network packet; and a robust header decompression unit capable of applying a first robust header decompression scheme to the end-to-end compressed packet header to restore a first packet header; a second robust header decompression unit capable of decompressing the hop-by-hop compressed network packet to restore the second packet header. 11. The apparatus according to claim 10 wherein the first robust header decompression scheme and the second robust header decompression scheme are Robust Header Compression. 12. An article comprising a machine-accessible medium having stored thereon instructions that, when executed by a machine, cause the machine to: apply a first robust header compression scheme to the network packet, the network packet comprising a first packet header, a second packet header and a payload, the first robust header compression scheme being applied to the first packet header to generate an end-to-end compressed packet header, the end-to end compressed packet header, the second packet header and the payload together comprising an end-to-end compressed network packet; encrypt the end-to-end compressed network packet, by adding an encryption header to the end-to-end compressed network packet to generate an encrypted end-to-end compressed network packet, the encrypted end-to-end compressed network packet comprising the encryption header, the end-to-end compressed packet header, the second packet header and the payload; and apply a second robust header compression scheme to the encryption header, the end-to-end compressed packet header and the second packet header in the encrypted end-to-end compressed network packet to generate a hop-by-hop compressed network packet. 13. The article according to claim 12 wherein the first robust header compression scheme and the second robust header compression scheme are Robust Header Compression. 14. The article according to claim 12 wherein the instructions that cause the machine to encrypt the end-to-end compressed network packet by adding the encryption header to the end-to-end compressed network packet includes applying an IP security protocol header to the compressed network packet. 15. An article comprising a machine-accessible medium having stored thereon instructions that, when executed by a machine, cause the machine to: decompress a compressed and encrypted network packet, the network packet including an encrypted end-to-end compressed network packet, the method comprising: receive the encrypted end-to-end compressed network packet including an encryption header, an end-to-end compressed packet header, a second packet header and a payload wherein the encryption header, the end-to-end compressed packet header and the payload are included in a hop-by-hop compressed network packet; decrypt the encrypted end-to-end compressed network packet to remove the encryption header and restore the end-to-end compressed packet header, the second packet header and the payload; and applying a first robust header decompression scheme to the end-to-end compressed packet header to restore a first packet header. 16. The article according to claim 15 wherein the instructions further cause the machine to apply a second robust header decompression scheme to the hop-by-hop compressed network packet to decompress the hop-by-hop compressed network packet and restore the second packet header. 17. The article according to claim 16 wherein the first robust header decompression scheme and the second robust header decompression scheme are Robust Header Compression. 18. A system for transmitting a network packet, comprising: a network; a source node on the network, the source node capable of applying a first robust header compression scheme to the network packet, the network packet comprising a first packet header, a second packet header and a payload, the first robust header compression scheme being applied to the first packet header to generate an end-to-end compressed packet header, the end-to end compressed packet header, the second packet header and the payload together comprising an end-to-end compressed network packet, the source node further capable of applying a second robust header compression scheme to the encryption header, the end-to-end compressed packet header and the second packet header in the encrypted end-to-end compressed network packet to generate a hop-by-hop compressed network packet, the source node also capable of encrypting the end-to-end compressed network packet by adding an encryption header to the end-to-end compressed network packet to generate an encrypted end-to-end compressed network packet, the encrypted end-to-end compressed network packet comprising the encryption header, the end-to-end compressed network packet header, the second packet header and the payload, the source node further capable of transmitting the encrypted end-to-end compressed network packet over the network; and a destination node on the network, the destination node capable of receiving the encrypted end-to-end compressed network packet from the source node via the network, the destination node also capable of decrypting the encrypted end-to-end compressed network packet to remove the encryption header and restore the end-to-end compressed packet header, the second packet header and the payload, the source node further capable of applying a first robust header decompression scheme to the end-to-end compressed packet header to restore the first packet header, the destination node is further capable of applying a second robust header decompression scheme to the hop-by-hop compressed packet header to decompress the hop-by-hop compressed header and restore the second packet header. 19. The system according to claim 18 wherein the first robust header compression scheme and the first robust header decompression scheme are Robust Header Compression. 20. A method of routing an encrypted end-to-end compressed network packet, comprising: receiving the encrypted end-to-end compressed network packet from a first network node, the encrypted compressed network packet including a compressed hop-by-hop packet header; applying a robust header decompression scheme to the compressed hop-by-hop hop packet header to restore a packet header; applying a robust header compression scheme to the packet header to regenerate a secure end-to-end compressed network packet including the compressed hop-by-hop packet header; and transmitting the secure end-to-end compressed network packet to a second network node. 21. The method according to claim 20 wherein the encrypted end-to-end compressed network packet is being transmitted from a source node to a destination node and the first node and the second node are intermediate nodes between the source node and the destination node. 22. The method according to claim 20 wherein the robust header compression scheme and the robust header decompression scheme are Robust Header Compression.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.