logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 8161539 B1

PDFFull Text
Date of Patent:
Apr. 17, 2012

Filed:

Apr. 19, 2002

Ipsec network adapter verifier

Applicants:

Michael Paul Cyr, Georgetown, TX (US);

Gerald Francis Mcbrearty, Austin, TX (US);

Shawn Patrick Mullen, Buda, TX (US);

Johnny Meng-han Shieh, Austin, TX (US);

Inventors:

Michael Paul Cyr, Georgetown, TX (US);

Gerald Francis McBrearty, Austin, TX (US);

Shawn Patrick Mullen, Buda, TX (US);

Johnny Meng-Han Shieh, Austin, TX (US);

Assignee:

International Business Machines Corporation, Armonk, NY (US);

Attorney:

Yudell Isidore Ng Russell PLLC

Primary Examiner:

William Powers

Int. Cl.
CPC ...
G06F 9/00 (2006.01); G06F 15/16 (2006.01); G06F 17/00 (2006.01); H04L 29/06 (2006.01);
U.S. Cl.
CPC ...
Abstract

A data processing system that supports verifiable IPSec network communication. The data processing system comprises an IPSec network adapter that connects the data processing system to an external network and provides IPSec encryption and routing of IPSec packets. The data processing system also comprises a network adapter verifier, which is a secondary network card that is utilized to verify that IPSec packets being transmitted to the external network by the IPSec network adapter have been encrypted. The network adapter verifier comprises a device driver, which caches a copy of an IP address from a generated IPSec packet prior to the packet being received by the network adapter. The network adapter verifier is connected to the external network and monitors the transmission of packets out to the network connection by the network adapter. The IP identification (ID) of the packets are compared to the captured IP address of the generated IPSec packet. When the IP address of the transmitted packet is not the same as that of the generated/cached IP address, the network adapter has failed to correctly encode the packet according to IPSec, and the transmission is thus not secure. The transmission of the stream of packets is therefore terminated.

Find Patent Forward Citations

Loading…