System and method for innovative management of transport layer security session tickets in a network environment
US-2016014152-A1 · Jan 14, 2016 · US
Dynamic secure packet block sizing
US9369487B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9369487-B2 |
| Application number | US-201414345110-A |
| Country | US |
| Kind code | B2 |
| Filing date | Feb 21, 2014 |
| Priority date | Feb 21, 2013 |
| Publication date | Jun 14, 2016 |
| Grant date | Jun 14, 2016 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Disclosed herein are methods, systems, and software for handling secure transport of data between end users and content serving devices. In one example, a method of operating a content server includes identifying a content request from an end user device. The method further includes, responsive to the user request, determining a transmission control protocol window size and a secure layer protocol block size. The method also provides scaling the secure layer protocol block size to match the transmission control protocol window size, and transferring secure layer protocol packets to the end user device using the scaled secure layer protocol block size.
First claim
Opening claim text (preview).
What is claimed is: 1. A method of operating a content delivery node, the method comprising: determining a transmission control protocol window size for a transmission control protocol; determining a secure layer protocol block size for a secure layer protocol, the transmission control protocol operating at a lower level in a network stack than the secure layer protocol; scaling the secure layer protocol block size to match the transmission control protocol window size; and transferring secure layer protocol packets using the scaled secure layer protocol block size. 2. The method of claim 1 wherein transferring the secure layer protocol packets using the scaled secure layer protocol block size comprises transferring the secure layer protocol packets to an end user device using the scaled secure layer protocol block size. 3. The method of claim 1 wherein scaling the secure layer protocol block size to match the transmission control protocol window size comprises padding the secure layer protocol block size to match the transmission control window protocol size to prevent acknowledgement timeout delays for size mismatched ones of the secure layer protocol packets. 4. The method of claim 3 wherein padding the secure socket layer block size comprises adding empty secure layer protocol data to match the transmission control protocol size. 5. The method of claim 1 wherein scaling the secure layer protocol block size to match the transmission control protocol window size comprises setting the scaled secure layer protocol block size via a parameter in an application level service. 6. The method of claim 1 wherein scaling the secure layer protocol block size to match the transmission control protocol window size comprises setting the scaled secure layer protocol block size via a parameter in application level software. 7. The method of claim 1 wherein the secure layer protocol comprises one of secure sockets layer or transport layer security. 8. A method of operating content server to facilitate secure transport of data with end user devices, the method comprising: identifying a content request from an end user device; determining a transmission control protocol window size for a transmission control protocol; determining a secure layer protocol block size for a secure layer protocol the transmission control protocol operating at a lower level in a network stack than the secure layer protocol; scaling the secure layer protocol block size to match the transmission control protocol window size; and transferring secure layer protocol packets to the end user device using the scaled secure layer protocol block size. 9. The method of claim 8 wherein scaling the secure layer protocol block size to match the transmission control protocol window size comprises padding the secure layer protocol block size to match the transmission control protocol window size to prevent acknowledgement tirneout delays for size mismatched ones of the secure layer protocol packets. 10. The method of claim 9 wherein padding the secure socket layer block size comprises adding empty secure layer protocol data to match the transmission control protocol size. 11. The method of claim 8 wherein scaling the secure layer protocol block size to match the transmission control protocol window size comprises setting the scaled secure layer protocol block size via a parameter in an application level service. 12. The method of claim 8 wherein scaling the secure layer protocol block size to match the transmission control protocol window size comprises setting the scaled secure layer protocol block size via a parameter in application level software. 13. The method of claim 8 wherein transferring the secure layer protocol packets to the end user device using the scaled secure layer protocol block size comprises: transferring secure layer protocol data to the end user device using the scaled secure layer protocol block size; and upon each transfer of secure layer protocol data of the scaled secure layer protocol block size, receiving an acknowledgement from the end user device. 14. The method of claim 8 wherein the secure layer protocol comprises one of secure sockets layer or transport layer security. 15. A computer apparatus to operate a content delivery node, the computer apparatus comprising: processing instructions that direct the content delivery node, when executed by the content delivery node, to: determine a transmission control protocol window size for a transmission control protocol: determine a secure layer protocol block size for a secure layer protocol, the transmission control protocol operating at a lower level in a network stack than the secure layer srotocol; scale the secure layer protocol block size to match the transmission control protocol window size; and transfer secure layer protocol packets using the scaled secure layer protocol block size; and one or more non-transitory computer readable media that store the processing instructions. 16. The computer apparatus of claim 15 wherein the processing instructions to transfer the secure layer protocol packets using the scaled secure layer protocol block size direct the content delivery node to transfer the secure layer protocol packets to an end user device using the scaled secure layer protocol block size. 17. The computer apparatus of claim 15 wherein the processing instructions to scale the secure layer protocol block size to match the transmission control protocol window size direct the content delivery node to pad the secure layer protocol block size to match the transmission control protocol window size to prevent acknowledgement timeout delays for size mismatched ones of the secure layer protocol packets. 18. The computer apparatus of claim 15 herein the processing instructions to scale the secure layer protocol block size to match the transmission control protocol window size direct the content delivery node to set the scaled secure layer protocol block size via a parameter in an application level service. 19. The computer apparatus of claim 15 wherein the secure layer protocol comprises one of secure sockets layer or transport layer security. 20. The computer apparatus of claim 15 wherein the processing instructions to determine a transmission control protocol window size direct the content delivery node to determine a transmission control protocol window size in response to a secure content request by an end user device.
Assignees
Inventors
Classifications
- H04L63/0485Primary
Networking architectures for enhanced packet encryption processing, e.g. offloading of IPsec packet processing or efficient security association look-up · CPC title
Electricity · mapped topic
- H04L63/166Primary
at the transport layer · CPC title
for providing a confidential data exchange among entities communicating through data packet networks · CPC title
Discarding or blocking control packets, e.g. ACK packets · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9369487B2 cover?
- Disclosed herein are methods, systems, and software for handling secure transport of data between end users and content serving devices. In one example, a method of operating a content server includes identifying a content request from an end user device. The method further includes, responsive to the user request, determining a transmission control protocol window size and a secure layer proto…
- Who is the assignee on this patent?
- Fastly Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/0485. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Jun 14 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).