NODE DEVICE AND DYNAMIC GENERATION METHOD OF SECURITYPOLICY

PROBLEM TO BE SOLVED: To perform communication applying IPsec processing by generating a permissible new SP when IPsec processing is requested for a packet even if there is no corresponding SP in an SPD. SOLUTION: The node device comprises a Security permission list for storing IPsec information whi...

Full description

Saved in:
Bibliographic Details
Main Author OGUSHI KOICHIRO
Format Patent
LanguageEnglish
Published 27.09.2007
Subjects
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online AccessGet full text

Cover

More Information
Summary:PROBLEM TO BE SOLVED: To perform communication applying IPsec processing by generating a permissible new SP when IPsec processing is requested for a packet even if there is no corresponding SP in an SPD. SOLUTION: The node device comprises a Security permission list for storing IPsec information which can be used in its own node device, and a Security Policy Database for storing Security Policies. If a Security Policy used in IKE negotiation has not been registered in the Security Policy Database when a request for IKE negotiation is received from the other node device, a content of a request for IKE negotiation is compared with a set content on the Security permission list, a new Security Policy is generated and set if the request for IKE negotiation is permissible and then registered in the Security Policy Database. COPYRIGHT: (C)2007,JPO&INPIT
Bibliography:Application Number: JP20060068581