Black core network system and method
US-2015124960-A1 · May 7, 2015 · US
Methods and systems for data traffic control and encryption
US10277559B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10277559-B2 |
| Application number | US-201414283944-A |
| Country | US |
| Kind code | B2 |
| Filing date | May 21, 2014 |
| Priority date | May 21, 2014 |
| Publication date | Apr 30, 2019 |
| Grant date | Apr 30, 2019 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Methods, systems and programming for data traffic control and encryption. In one example, data traffic is received from a first node to be sent to a second node. The health of an encryption pathway between the first node and the second node is determined. The data traffic is sent to the second node over the network without going through the encryption pathway when the encryption pathway is not healthy.
First claim
Opening claim text (preview).
We claim: 1. A method implemented on at least one machine each of which has at least one processor, storage, and a communication platform connected to a network for data traffic control, the method comprising: receiving data traffic from a first node to be sent to a second node; determining, at regular time intervals, a status for normal operation of a first pathway by verifying whether test data can be communicated using the first pathway between the first node and the second node, the verifying including determining within a time-out period, whether test data can be encrypted and transmitted over the first pathway from the first node to the second node, and whether test data that is decrypted, encrypted, and transmitted by the second node can be received by the first node over the first pathway, wherein the test data is encrypted based on a unique encryption key associated with each time interval; and transmitting the data traffic through a second pathway to the second node over the network without using the first pathway based on the status for normal operation of the first pathway not being determined within the time-out period, the second pathway being different from the first pathway. 2. The method of claim 1 , further comprising sending the data traffic to the second node over the network using the first pathway when the status for normal operation of the first pathway is determined. 3. The method of claim 1 , wherein the second pathway is a non-encrypted pathway. 4. The method of claim 1 , wherein a magnitude of the time-out period is less than the time interval. 5. A system including storage, and a communication platform connected to a network for data traffic control, the system comprising: at least one processor configured to: determine, at regular time intervals, a status for normal operation of a first pathway by verifying whether test data can be communicated using the first pathway between a first node and a second node, the verifying including determining within a time-out period, whether test data can be encrypted and transmitted over the first pathway from the first node to the second node, and whether test data that is decrypted, encrypted, and transmitted by the second node can be received by the first node over the first pathway, wherein the test data is encrypted based on a unique encryption key associated with each time interval; and transmit data traffic received from the first node through a second pathway to the second node over the network without using the first pathway based on the status for normal operation of the first pathway not being determined within the time-out period, the second pathway being different from the first pathway. 6. The system of claim 5 , wherein the at least one processor is further configured to send the data traffic to the second node over the network using the first pathway when the status for normal operation of the first pathway is determined. 7. A non-transitory machine-readable medium having information recorded thereon for data traffic control, wherein the information, when read by the machine, causes the machine to perform the following: receiving data traffic from a first node to be sent to a second node; determining, at regular time intervals, a status for normal operation of a first pathway by verifying whether test data can be communicated using the first pathway between the first node and the second node, the verifying including determining within a time-out period, whether test data can be encrypted and transmitted over the first pathway from the first node to the second node, and whether test data that is decrypted, encrypted, and transmitted by the second node can be received by the first node over the first pathway, wherein the test data is encrypted based on a unique encryption key associated with each time interval; and transmitting the data traffic through a second pathway to the second node over the network without using the first pathway based on the status for normal operation of the first pathway not being determined within the time-out period, the second pathway being different from the first pathway. 8. A system for data traffic control comprising: means for receiving data traffic from a first node to be sent to a second node; means for determining, at regular time intervals, a status for normal operation of a first pathway by verifying whether test data can be communicated using the first pathway between the first node and the second node, the verifying including determining within a time-out period, whether test data can be encrypted and transmitted over the first pathway from the first node to the second node, and whether test data that is decrypted, encrypted, and transmitted by the second node can be received by the first node over the first pathway, wherein the test data is encrypted based on a unique encryption key associated with each time interval; and means for transmitting the data traffic through a second pathway to the second node over the network without using the first pathway based on the status for normal operation of the first pathway not being determined within the time-out period, the second pathway being different from the first pathway. 9. A method implemented on at least one machine each of which has at least one processor, storage, and a communication platform connected to a network for controlling data traffic, the method comprising: encrypting first data at a first node; transmitting the encrypted first data to a second node over the network using a first pathway; decrypting the encrypted first data to generate second data at the second node; encrypting the second data at the second node; transmitting the encrypted second data to the first node over the network using the first pathway; decrypting the received encrypted second data to generate third data at the first node; comparing, at regular time intervals, the first data with the third data at the first node to determine, within a time-out period, a status for normal operation of the first pathway, wherein the first data and the second data are encrypted based on a unique encryption key associated with each time interval; and transmitting the data traffic through a second pathway to the second node over the network without using the first pathway in response to the first data not matching the third data, the second pathway being different from the first pathway. 10. The method of claim 9 , wherein the status for normal operation of the first pathway is determined based on the first data matching the third data according to at least one criterion. 11. The method of claim 9 , wherein the first data is at least one of a test message and data included in the data traffic. 12. A system including storage, and a communication platform connected to a network for controlling data traffic, the system comprising: at least one processor configured to: encrypt first data at a first node, transmit the encrypted first data to a second node over the network using a first pathway for transmitting encrypted data, decrypt, at the second node, the received encrypted first data to generate second data, encrypt the second data, transmit the encrypted second data to the first node over the network using the first pathway, decrypt the received encrypted second data to generate third data, compare, at regular time intervals, the first data with the third data to determine, within a time-out period, a status for normal operation of the first pathway, wherein the first data and the second data are encrypted based on a unique encryption key associated with each time interval, and transmit the data traffic through a second
Assignees
Inventors
Classifications
using key encryption key · CPC title
involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP] · CPC title
- H04L63/0428Primary
wherein the data content is protected, e.g. by encrypting or encapsulating the payload · CPC title
Revocation or update of secret information, e.g. encryption key update or rekeying · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10277559B2 cover?
- Methods, systems and programming for data traffic control and encryption. In one example, data traffic is received from a first node to be sent to a second node. The health of an encryption pathway between the first node and the second node is determined. The data traffic is sent to the second node over the network without going through the encryption pathway when the encryption pathway is not …
- Who is the assignee on this patent?
- Yahoo Inc, Excalibur Ip Llc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/0428. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Apr 30 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).