-
公开(公告)号:US20190288842A1
公开(公告)日:2019-09-19
申请号:US16005990
申请日:2018-06-12
Applicant: Cisco Technology, Inc.
Inventor: Brian Weis , David M. Carrel , Michael L. Sullenberger
Abstract: Techniques are presented for encryption key rollover synchronization in a network. In one embodiment, a method includes generating a new set of public-key encryption keys for a first network element. Based on the new set of public-key encryption keys, a set of new security associations between the first network element and each other network element in the network is generated. The method includes providing a new public key from the new set of public-key encryption keys to a network controller and using security associations associated with a previous set of public-key encryption keys for encrypted communication between the first network element and each other network element. Upon obtaining, from a second network element, traffic protected by a security association from the set of new security associations, the method includes using the new security associations for subsequent encrypted communication between the first network element and the second network element.
Search Results
1
records
(took 0.04 seconds)
