Rajsic
Carl Rajsic, Nepean CA
Patent application number | Description | Published |
---|---|---|
20080240102 | Method and system for policy-based routing in a private network-to-network interface protocol based network - A method for policy-based routing of calls between nodes in a network, comprising: entering policy constraint indices for selected addresses in respective entries of an address translation table, the address translation table for accessing by a first node of the network to selectively translate attributes of calls based on respective addresses prior to transmission over the network to a second node, the policy constraint indices pointing to respective policy constraints for routing calls between the first and second nodes; receiving a call at the first node, the call including an address; accessing the address translation table using the address to determine whether the call requires assignment of a policy constraint by presence of an entry for the address in the address translation table and by presence of a policy constraint index in the entry; and, if the call requires assignment of a policy constraint, identifying a policy constraint with the policy constraint index, assigning the policy constraint to the call, and routing the call between the first and second nodes in accordance with the policy constraint. | 10-02-2008 |
20110222546 | METHOD AND APPARATUS FOR SECURELY ESTABLISHING L3-SVC CONNECTIONS - A system and method are provided for securely establishing Layer-3 SVCs or SPVCs across an ATM network. An originating multiservice switch that generates the connection setup message for the Layer-3 connection includes security information within the setup message, such as a Closed User Group Interlock Code. When the destination multiservice switch receives the setup message, it extracts the embedded security information and compares it with stored security information corresponding to the connection. The correspondence may be determined from the destination user. If the embedded security information matches the stored security information, the destination multiservice switch allows the connection to be established. | 09-15-2011 |
20150046694 | METHOD AND APPARATUS FOR SECURELY ESTABLISHING L3-SVC CONNECTIONS - A system and method are provided for securely establishing Layer-3 SVCs or SPVCs across an ATM network. An originating multiservice switch that generates the connection setup message for the Layer-3 connection includes security information within the setup message, such as a Closed User Group Interlock Code. When the destination multiservice switch receives the setup message, it extracts the embedded security information and compares it with stored security information corresponding to the connection. The correspondence may be determined from the destination user. If the embedded security information matches the stored security information, the destination multiservice switch allows the connection to be established. | 02-12-2015 |
Carl Rajsic, Ottawa, Ontario CA
Patent application number | Description | Published |
---|---|---|
20140208094 | CONTROL PLANE ENCRYPTION IN IP/MPLS NETWORKS - A method for providing control plane encryption in layer 3 networks is disclosed. The method for providing control plane encryption in layer 3 networks includes for a network having a subset of network elements forming a secured domain; the steps of at a network element which is in the secured domain, encrypting all unencrypted Layer 3 packets as they egress an encryption enable egress interface; unencrypting all encrypted Layer 3 packets as they egress an egress interface is not enabled for encryption; and leaving encrypted all encrypted Layer 3 packets as they egress an encryption enable egress interface. A system and machine readable storage media are also disclosed. | 07-24-2014 |
Carl Rajsic, Ontario CA
Patent application number | Description | Published |
---|---|---|
20140208099 | SERVICE PLANE ENCRYPTION IN IP/MPLS NETWORKS - A method for providing service plane encryption in IP/MPLS and GRE networks is disclosed. The method for providing service plane encryption in IP/MPLS and GRE networks includes receiving a first Security Parameter Index with associated first encryption key and associated first authentication key at a first network element supporting the first Service Distribution Point; receiving an instruction at the first network element to encrypt data entering the first Service Distribution point with the first encryption key; receiving an instruction at the first network element to associate a data communication service provided at the first network element to the first Service Distribution Point; providing an encryption label; and providing data associated with the first communication service to the first Service Distribution Point for transmission to the second Service Distribution Point. The method for providing service plane encryption in IP/MPLS and GRE networks provides encryption advantages over systems known in the art by providing capability for selectively encrypting services connected via a data tunnel. | 07-24-2014 |
Carl J. Rajsic, Ottawa CA
Patent application number | Description | Published |
---|---|---|
20140294006 | DIRECT SERVICE MAPPING FOR NAT AND PNAT - Various exemplary embodiments relate to a method of processing a packet at a firewall. The method includes: receiving a packet having a source address, destination address, source port, and destination port; comparing the packet to match criteria of a rule, wherein the match criteria includes at least one service group having a plurality of port combinations; matching both the source port and destination port with one of the plurality of port combinations; determining an index into the service group of the matching port combination; and translating a port of the packet based on the index into the service group and a NAT service group defined for the rule. | 10-02-2014 |