This invention relates to computer network communication methodologies generally, and in particular, to secure communication protocols for computer networks.
Communication networks are ubiquitous nowadays, and in particular, data networks (e.g., Internet) are becoming increasingly integrated in our day to day life. Maintaining the integrity of information flowing over networks is of critical importance for both privacy and national security reasons. Most existing networks, both commercial and military, have already integrated various data protection measures. At the heart of every existing security technology, the data protection relies highly on the public key/private key infrastructure (e.g., RSA) developed since 1970s for computer networks.
According to information theory, for the traditional key based encryption scheme, perfect secrecy is guaranteed only if a key size is at least as long as the source message. While providing a key size at least as long as a source message establishes provable security of the so-called one-time pad, such scheme is largely useless in the computer network era as key exchange is prohibitively complex.
There is provided a method for securely communicating a message from a source node to a destination node over a network. The method can comprise the steps of: converting the message into an initial bit sequence, pre-processing the initial bit sequence by a modulo adding the initial bit sequence with an auxiliary key message, constructing a reduced network, determining a multitude of paths from the source node to the destination node over the reduced network, constructing an expanded bit sequence comprising the initial bit sequence and the auxiliary key message, splitting the expanded bit sequence into two or more parts, transmitting the two or more parts of the expanded bit sequence over two or more paths of the multitude of paths, re-assembling the two or more parts of the expanded bit sequence at the destination node, and recovering the initial bit sequence by modulo adding the expanded bit sequence with the auxiliary key message.
The drawings are not necessarily to scale, emphasis instead generally being placed upon illustrating the principles of the invention. In the drawings, like numerals are used to indicate like parts throughout the various views.
There is provided a method for securely communicating messages over heterogeneous networks.
In one aspect, each of the LANs, WANs, and VPNs can comprise two or more interconnected computers. A “computer” herein shall refer to a programmable device for data processing which includes a central processing unit (CPU), a memory, and at least one communication interface. A computer can be provided, e.g., by a server, a router interconnecting two or more networks, a personal computer, or a mobile computing device such as a GPRS-enabled personal communicator. A skilled artisan would appreciate the fact that other types of programmable devices for data processing which include a central processing unit (CPU), a memory, and at least one communication interface are within the spirit and the scope of the invention.
In another aspect, a heterogeneous communication network can be represented by a directed graph G=(V,E) comprising a plurality of nodes V interconnected by a plurality of edges E as shown in
The communication network represented by a graph G can include a source node u and a destination node d. A message can be encoded and node u, then transmitted via Out(u)—the set of edges flowing out of the node u, further transmitted by other edges, and finally transmitted via In(d)—the set of edges flowing to the node d to the node d where it can be successfully decoded. The communication network can include one or more paths from the source node u to the destination node d.
Each link in the network (represented by an edge of graph G) can be subject to eavesdropping, which means that a third party (which is not an intended recipient of the communication) can obtain a verbatim copy of information transmitted over a specific link. In one aspect, the network can be subject to a non-cooperative eavesdropping, i.e., two or more third parties can eavesdrop on two or more links within the network, but the third parties do not share the information they obtained by eavesdropping. In a further aspect, a single third party can eavesdrop on two or more links within the network.
In a further aspect, the graph representing a heterogeneous communication network can be a plane graph, i.e., it can be drawn in a single plane in such a way that its edges intersect only at their nodes. In a yet further aspect, the graph can be bounded, i.e., the source node and the destination node can be placed on its left and right ends respectively.
As noted earlier, a communication network can include multiple paths from the source to the destination. According to the invention, the path diversity can be relied upon for securely transmitting a message from the source to the destination. A message can be split in two or more parts, each of the parts can be transmitted by a network path to the destination where the message can be re-assembled by the recipient, while a third party eavesdropping on any single link will not be able to re-construct the message being transmitted.
The prior art key encryption technology needs to have a common private key (most likely generated from a public key) available a priori to both the sender and the receiver. According to the invention, however, a key can be generated by the sender, which can modulo add the key to the message bit sequence. Then the key and the resulting bit sequence can be transmitted over the network, by splitting the expanded bit sequence (comprising the key and the modulo added bit sequence) into two or more parts which then can be transmitted through two or more paths.
At step 310, a message S can be converted into an initial bit sequence b1, b2, . . . , bn, where the bits are assumed to be independently and identically distributed. In one embodiment, step 310 can be performed by a computer. In another embodiment, step 310 can be performed by a group of computers comprising two or more interconnected computers.
At step 320, the initial bit sequence can be pre-processed by modulo adding with an auxiliary key message. In one embodiment, the auxiliary key message can be provided by a bit sequence serving as a key. In one embodiment, the auxiliary key message K can be randomly generated by the sender. A skilled artisan would appreciate the fact that other ways of generating the key message K are within the spirit and the scope of the invention.
In one embodiment, step 320 can be performed by a computer. In another embodiment, step 320 can be performed by a group of computers comprising two or more interconnected computers. In a yet another embodiment, step 320 can be performed by the same computer or by the same group of interconnected computers which perform step 310.
At step 330, a reduced network can be constructed. In one aspect, this step can be performed by identifying a multitude of paths achieving the maximum flow over the network, as described in details herein infra with references to
At step 350, an expanded bit sequence can be constructed. The expanded bit sequence can comprise the initial bit sequence and the auxiliary key message. In one embodiment, step 350 can be performed by a computer. In another embodiment, step 350 can be performed by a group of computers comprising two or more interconnected computers. In a yet another embodiment, step 350 can be performed by the same computer or by the same group of interconnected computers which perform step 340.
At step 360, the expanded bit sequence can be split into two or more parts. In one embodiment, the expanded bit sequence can be split into two or more parts of a pre-defined size. In another embodiment, the expanded bit sequence can be split into two or more parts of a randomly selected size. A skilled artisan would appreciate the fact that other methods of splitting the expanded bit sequence into two or more parts are within the scope and the spirit of the invention.
In one embodiment, step 360 can be performed by a computer. In another embodiment, step 360 can be performed by a group of computers comprising two or more interconnected computers. In a yet another embodiment, step 360 can be performed by the same computer or by the same group of interconnected computers which perform step 350.
At step 370, the parts of the expanded bit sequence can be transmitted over the identified multitude of paths. In one embodiment, each part of the expanded bit sequence can be successively assigned to the identified multitude of paths.
In one embodiment, step 370 can be performed by a computer. In another embodiment, step 370 can be performed by a group of computers comprising two or more interconnected computers. In a yet another embodiment, step 370 can be performed by the same computer or by the same group of interconnected computers which perform step 360.
At step 380, the parts of the expanded bit sequence can be re-assembled at the destination node. In one embodiment, step 380 can be performed by a computer. In another embodiment, step 380 can be performed by a group of computers comprising two or more interconnected computers.
At step 390, the initial bit sequence can be recovered by modulo adding the expanded bit sequence with the auxiliary key message. In one embodiment, step 390 can be performed by a computer. In another embodiment, step 390 can be performed by a group of computers comprising two or more interconnected computers. In a yet another embodiment, step 390 can be performed by the same computer or by the same group of interconnected computers which perform step 380.
The method can terminate after the message S is successfully recovered at the destination node.
In one embodiment, steps 310-370 can be performed by a group of one or more interconnected computers, and steps 380 and 390 can be performed by another group of one or more interconnected computers. In another embodiment, steps 310-370 can be performed by one computer, and steps 380 and 390 can be performed by another computer, both computers being interconnected by the same computer network.
Sample embodiments of auxiliary methods are now being described with references to
In a directed graph G, a path is a sequence of edges (e1, e2, . . . ei) such that e1 εOut(u), e1εIn(d), and for 0<i<1 there exist tiεV such that eiεIn(ti) and ei+1εOut(ti). A path has a flow amount f if each edge of this path has flow amount f.
At step 410, the counter of identified paths i is initialized with a value of 0.
At step 420, i-th path from the source node to the destination node which has a strictly positive flow capacity remaining, is identified. At step 430, the method verifies whether the i-th path was successfully determined. If there are no such paths, the method of constructing a reduced network terminates.
At step 440, the maximum flow f, along the i-th path is determined as being equal to the smallest flow on any edge in the path (the bottleneck edge).
At step 450, the value of f, is subtracted from the remaining flow capacity in the forward direction for each edge in the path.
At step 460, the value of f, is added to the remaining flow capacity in the backwards direction for each edge in the path.
At step 470, the value of the counter of identified paths i is incremented by 1, and the method cycles back to step 420.
As noted herein supra, the method of constructing a reduced network terminates when no path from the source node to the destination node can be identified which has a strictly positive flow capacity remaining The reduced network comprises all the paths identified.
At step 510, the counter of identified paths i is initialized with a value of 0.
At step 520, i-th path from the source node to the destination node is identified as the highest path from the source node to the destination node, as described in details herein infra with references to
At step 540, the maximum flow f, along the i-th path is determined as being equal to the smallest flow on any edge in the path (the bottleneck edge).
At step 550, the value of f, is subtracted from the remaining flow capacity in the forward direction for each edge in the path.
At step 570, the value of the counter of identified paths i is incremented by 1, and the method cycles back to step 520.
As noted herein supra, the method of identifying a multitude of paths over the reduced network terminates when no path from the source node to the destination node can be identified which has a strictly positive flow capacity remaining.
At step 620, the virtual edge ei is initialized with a value of any edge from In(u), and node t is initialized with the value of the source node u.
At step 630, an output edge e0 from the edge set Out(t) which is the closest to the edge ei is identified according to the clockwise order at node t.
At step 640, verifies whether the edge e0 can be found in Out(d) and successfully terminates if the verification succeeds. Otherwise, at step 650 the variable ei is assigned the value e0, the variable t is assigned the value of the end node of the edge e0, and the method cycles back to step 630.
[The following section is an excerpt of U.S. Provisional Patent Application No. 61/185,434 with minor formatting and editorial changes].
This invention relates to computer network communication methodologies generally, and in particular, to secure communication protocols for computer networks.
Communication networks are ubiquitous nowadays, and in particular, data networks (e.g., Internet) are becoming increasingly integrated in our day to day life. Maintaining the integrity of information flowing over networks is of critical importance for both privacy and national security reasons. Most existing networks, both commercial and military, have already integrated various data protection measures. At the heart of every existing security technology, the data protection relies highly on the public key/private key infrastructure (e.g., RSA) developed since 1970s for computer networks.
According to theory, perfect secrecy is guaranteed only if a key size is at least as long as the source message. While providing a key size at least as long as a source range establishes provable security of the so-called one-time pad, such scheme is largely useless in the computer network era as key exchange is prohibitively complex.
According to a security share methodology set forth herein route diversity can be exploited in a network providing multiple independent routes to a destination allows a sender to encode a message in a way such that eavesdropping on a single link will not result in breach of security.
There is set forth in one embodiment a method for secure communication over networks where each link or node is subject to non-cooperative eavesdropping. The method can include the design of encoding, decoding, and bit routing for communication over a network, comprising the steps of: (a) Manipulating the messages bits by modulo addition; and (b) constructing the virtual parallel path set of the network for bits transmission.
There is further set forth in one embodiment a system consisting of interconnected nodes in which two nodes need to communicate securely with each other via other nodes that serve as relays in the presence of an eavesdropper at an unknown location.
There is further set forth in one embodiment a method for secure and reliable communication when the links are subject to eavesdropping or outage or byzantine threat.
There is further set forth in one embodiment a system consisting of interconnected nodes in which two nodes need to communicate with each other securely and reliably via other nodes that serve as relays in the presence of an eavesdropper at an unknown location and/or link outage and/or byzantine nodes.
There is further set forth in one embodiment a distributed storage or secret sharing system in which each storage unit or trustee is subject to wiretapping or theft threat.
Further details of encoding, decoding, and network protocol design for secure communication over wireline and wireless networks in one embodiment are set forth herein.
This invention provides a design of secure network where the communication occurs between one sender and one receiver. Against eavesdropping or active threat in the network with unknown location, the proposed design approach ensures security and optimizes throughput in the meantime. In addition, the design approach is operative to protect distributed data storage and other similar systems against possible compromise of one or more nodes.
Communication networks are ubiquitous nowadays, and in particular, data networks (e.g., Internet) are becoming increasingly integrated in our day to day life. Maintaining the integrity of information flowing over networks is of critical importance for both privacy and national security reasons. Most existing networks, including commercial and military, have already integrated various data protection measures. At the heart of every existing security technology, the data protection relies highly on the public key/private key infrastructure (e.g., RSA) developed since the 1970s for computer networks.
On the theoretical level, it is also not surprising that existing security schemes are largely based upon the complexity of certain computational problems. One can trace it back to C. E. Shannon's seminal work in 1949, Communication Theory of Secrecy Systems. A Shannon Cipher System, as described in
In
Define S, K, X to be random variable with distribution P(.). In information theoretic terms, perfect secrecy is achieved when H(S|X)=H(S) but H(S|X,K)=0 where
is the usual Shannon entropy function that measures uncertainty associated with the random variable. Thus, given X alone, Eve gains no information about S, while if both X and K are given (as for Alice), S can be completely recovered. Using the information theoretic argument, Shannon established a somewhat surprising result. Perfect secrecy is guaranteed only if H(K)>H(S), i.e., the key size is at least as long as the source message. While this establishes provable security of the so-called one-time pad, such scheme is largely useless in the computer network era as key exchange is prohibitively complex.
Our goal is to take a holistic approach over the network design, to obtain security as well as the reliability and throughput of network communication. This integrated approach is expected to provide a new design paradigm that utilizes the structure of the network and potentially improve the current layered network design. The basic idea is to exploit the route diversity in a network. Providing multiple independent routes to the destination allows the sender to encode the message in a way such that for an adversary that eavesdrops on a single link, it will gain no information about what is transmitted. Consider for example that there are two parallel links each of capacity, C, bits/second. The simple scheme is to communicate a secret key on link 1 while using the key to encrypt the message on link 2. Eavesdropping on link 2 is protected because of the provable security of one-time pad. On the other hand, the eavesdropper on link 1 has only access to the key but not the encrypted message. Therefore the eavesdropper is also completely ignorant of the message. In the following, we describe the application of such principle to a communication network where the links are not necessarily parallel.
The basic model involved in the invention assumes any single-source single-sink acyclic network model, where a single source delivers information to a single sink through a network of nodes. Each link in the network is subject to non-cooperating eavesdropping. That is, we assume there is an eavesdropper trying to wiretap on a link within the network. The location of the eavesdropper is unknown to the communicating parties. Equivalently, we may assume each link is subject to wiretapping but the wire tappers do not share information. This basic model is illustrated in
In
The above basic model consists of the following components:
where H(Sn|Xion), (i, o)εE is evaluated under the assumption that the random messages Sn,Tn, are independent and uniformly distributed over their ranges. The set of all achievable rate quadruples will be denoted by R. If (Rc, Rp, Re, io)εR, we say that Rc and Rp are achievable private and public message rates at equivocation rates Re,io, (i,o)εE, for this network.
Specifically, the physical meaning of the rate triple is as follows:
The network under consideration is assumed to be a plane graph, which means the graph can be drawn on the plane in such a way that its edges intersect only at their nodes. This is the typical structure for communication networks that we encounter in real practice. In addition, the graph is bounded, i.e., the source node and sink node is in its left and right end respectively.
In
In the absence of security requirement, the maximal network throughput is determined by the well-known Max-flow Min-cut theorem, which can be re-written as the following theorem:
Theorem 1: (Rc,Rp), (i,o)εE, is achievable iff
Where cut is defined as a valid cut of this network, which splits the node set V into two disjoint subsets: a source subset Ucut and a sink subset Dcut, where uεUcut and dεCcut. (IO)cutl defined as the boundary link set for this given cut cut, where for j=1, 2, . . . , l, {(i,o)cut,jε(IO)cutl|(i,o)cut,jεE,icut,jεUcut,ocut,jεDcut}
The max-flow min-cut theorem states: The maximum amount of flow is equal to the capacity of a minimal cut.
In this subsection, we first revisit Ford and Fulkerson's method which was used to prove the achievability of max-flow min-cut theorem. The key to the proposed design approach is a suitable modification of Ford-Fulkerson's method to ensure security while maximizing throughput.
Definition 2: In a directed graph G, a Path is a sequence of edges {e1, e2, . . . , ,el} such that e1εOut(u), e1εIn(d), and for 0<i<1 there exist tiεV such that eiεIn(ti) and ei+1εOut(ti).
Definition 3: Two paths share an edge or node if this edge or node is contained by two paths. Two paths are different if one path contains no less than one edge that is not shared by the other path. A path with flow amount f is defined as a path wherein each edge of the path has flow f and thus an information flow with amount f goes through a pipeline path from u to d.
Ford and Fulkerson's solution.
On termination, the sum of the flows along the paths found during Step (1) gives the maximum total flow between the source and sink nodes. This path set constructs what we call a reduced network, as illustrated in
In
In this section, we propose our approach for secure communication for the model described in Section 1.1.
The proposed approach to achieve security via a network is summarized as follows:
In
The above summarized approach results in some specific security and throughput rates. We can analytically describe it with a rate equivocation region, characterized as the following:
Theorem 2: (Rc, Rp, Re,io), (i,o)εE, is achievable if there exist auxiliary numbers rio such that
This achievable rate equivocation region is obtained through the previous approach. By lack of secrecy constraint, the main result reduces to the following, which is an alternative expression of the max-flow min-cut theorem.
The interesting and practically significant case is when perfect secrecy is achieved against non-cooperating eavesdropping, i.e., Re,io=Rc. Under this situation, the rate region is constrained by
This can be further simplified as
The proposed approach deals with the case that the eavesdropper listens to each communication link in the network. This invention also can include the extension to the case that the eavesdropper listens to the nodes in the network. Again, we can analytically describe it with a rate equivocation region characterized as the following:
Theorem 3: (Rc, Rp, Re,r), rεV is achievable if there exist auxiliary numbers rio such that (i,o)εE and
A small sample of embodiments that are set forth herein include the following: A1. A method for secure communication over networks where each link or node is subject to non-cooperative eavesdropping. The method involves the design of encoding, decoding, and bit routing for communication over a network comprising the steps of: (a) Manipulate the messages bits by modulo addition, (b) Construct the virtual parallel path set of the network for bits transmission. A2. A system consisting of interconnected nodes in which two nodes need to communicate securely with each other via other nodes that serve as relays in the presence of an eavesdropper at an unknown location. A3. A method for secure and reliable communication when the links are subject to eavesdropping or outage or byzantine threat. A4. A system consisting of interconnected nodes in which two nodes need to communicate with each other securely and reliably via other nodes that serve as relays in the presence of an eavesdropper at an unknown location and/or link outage and/or byzantine nodes. A5. A distributed storage or secret sharing system in which each storage unit or trustee is subject to wiretapping or theft threat.
To prove the achievability of Theorem 2, we would discuss the detailed encoder-decoder as the following steps, as illustrated in
In
Step (2): By modulo add the two binary sequences together and patch up the proceed sequences, we get a bit sequence,
{c1, c2, . . . , cnR
Where, kmod{nR
This sequence has the following property:
Lemma 1: Any continuous segment with length r of the bit sequence:
cj, cj+1, . . . , cj+r−1, means the conditional entropy is
H(b1, b2, bnR
Step (3): Some definitions of network are first given. Next we will define the order of two paths.
For convenience, we introduce a virtual edge In(u) terminating at the source node u and a virtual edge Out(d) flowing out of the sink node d, as illustrated in
Definition 4: Path A is higher than Path B iff for any node t shared by A,B, the input and output edges of A,B at node t are clockwise ordered as {Ai, Ao, Bo, Bi}. Conversely, Path A is lower than Path B iff the edges are ordered as {Bi, Bo, Ao, Ai}. Path A and B are crossover if Path A is neither higher nor lower than Path B.
The examples are shown in
Definition 5: Edge e=(i, o) is higher than a path A iff there exists a path B in network, which contains the edge e and is higher than A.
In
With the above definitions, we have the following lemmas, which will be proved later.
Lemma 2: An ordered path set (from the highest path to the lowest path) can be constructed for information flow if the information amount is no more than the min-cut value. The ordered path set means there exists no crossover path pair in the set.
Lemma 3: Only the paths with successive order can share the same edge, i.e., Pathi, Pathk can not share any edge which is not contained in Pathj, with i<j<k.
Now we can assign the bit sequence {c1, c2, . . . , cnR
Then, by Lemma 3, it can be shown that what flows on each edge (i,o)εE would be a continuous segment of the bit sequence, saying cj, cj+1, . . . , cj+nr′−1, where rio′≦rio.
By Lemma 1, min {nRc, nRc+nRp−nrio′}≧min{nRc, nRc+nRp−nrio}bits secrecy can be obtained.
To summarize, our encoding/decoding/bit assignment process obtains the desired security.
Then this completes the achievability proof of our theorem. However it is still not clear if our approach is optimal.
To prove Lemma 2, an iterative process is applied to construct an ordered path set. This method is a modified version of the Ford-Fulkerson original process for finding network capacity. Its main idea is to carefully bookkeep the flows assigned to ordered paths from the source node to the sink node. First of all, we assume the flow amounts assigned to the edges are already determined to achieve the flow capacity as the Ford-Fulkerson process. The steps in the method are dealing with this reduced network.
In
Construct the parallel path set over the reduced network.
This completes the proof of Lemma 2.
Proof by contradiction is used to prove Lemma 3. Assume that Lemma 3 is wrong and Pathi, Pathk can share one edge e which is not contained in Pathj with i<j<k. Then e is higher than Pathj since Path, containing edge e is higher than Pathj. On the other hand, e is lower than Pathj as Pathk is lower than Pathj. Thus e is contained in Pathj, which contradict the assumption.
[End of excerpt of U.S. Provisional Patent Application No. 61/185,434 with minor formatting and editorial changes].
A skilled artisan would appreciate the fact that the network topologies shown in the drawings have been chosen for illustration purposes; any other network topologies providing the necessary connectivity between the components depicted in the drawings, are understood to be within the scope of this invention.
A small sample of systems methods and apparatus that are described herein is as follows:
A1. A method for securely communicating a message from a source node to a destination node over a network interconnecting a plurality of computers, said method comprising:
(i) converting said message into a first bit sequence, said converting performed by one or more computers of said plurality of computers;
(ii) pre-processing said first bit sequence by a modulo adding said first bit sequence with an auxiliary key message, said pre-processing performed by one or more computers of said plurality of computers;
(iii) constructing a reduced network, said constructing a reduced network performed by one or more computers of said plurality of computers;
(iv) determining a multitude of paths from said source node to said destination node over said reduced network, said determining performed by one or more computers of said plurality of computers;
(v) constructing a second bit sequence, said second bit sequence comprising said first bit sequence and said auxiliary key message, said constructing a second bit sequence performed by one or more computers of said plurality of computers;
(vi) splitting said second bit sequence into two or more parts, said splitting performed by one or more computers of said plurality of computers;
(vii) transmitting said two or more parts of said second bit sequence over two or more paths of said multitude of paths, said transmitting performed by one or more computers of said plurality of computers;
(viii) re-assembling said two or more parts of said second bit sequence at said destination node, said re-assembling performed by one or more computers of said plurality of computers; and
(ix) recovering said first bit sequence by modulo adding said second bit sequence with said auxiliary key message, said recovering performed by one or more computers of said plurality of computers.
A2. The method of A1, wherein said auxiliary key message is randomly generated at said source node.
A3. The method of A1, wherein said steps (i), (ii), (iii), (iv), (v), (vi), and (vii) are performed by a group of interconnected computers of said plurality of computers, said group of interconnected computers comprising one or more computers of said plurality of computers.
A4. The method of A1, wherein said steps (i), (ii), (iii), (iv), (v), (vi), and (vii) are performed by a first group of interconnected computers of said plurality of computers, said first group of interconnected computers comprising one or more computers of said plurality of computers; and
wherein said steps (viii) and (ix) are performed by a second group of interconnected computers, said second group of interconnected computers comprising one or more computers of said plurality of computers.
A5. The method of A1, wherein at least one link in said network is subject to eavesdropping.
A6. The method of A1, wherein said step of constructing a reduced network is performed by identifying a multitude of paths achieving the maximum flow over the network.
A7. The method of A1, wherein said step of determining a multitude of paths from said source node to said destination node over said reduced network is performed by recurrently identifying a highest path from said source node to said destination node.
A8. The method of A1, wherein said step of splitting said bit sequence into two or more parts is performed using at least one of: a pre-determined size of said two or more parts, a randomly selected size of said two or more parts.
A9. The method of A1, wherein said step of transmitting two or more parts of a bit sequence over two or more paths of said multitude of paths comprises the step of successively assigning each part of said bit sequence to a path of said multitude of paths.
B1. A method for securely communicating a message from a source node to a destination node over a network comprising:
converting said message into a bit sequence;
pre-processing said bit sequence;
constructing a reduced network;
determining a multitude of paths from said source node to said destination node over said reduced network;
splitting said bit sequence into two or more parts;
transmitting said two or more parts of said bit sequence over two or more paths of said multitude of paths; and
re-assembling said two or more parts of said bit sequence at said destination node.
B2. The method of B1, wherein said pre-processing includes pre-processing by a modulo addition operator.
B3. The method of B1, wherein at least one link in said network is subject to eavesdropping.
B4. The method of B1, wherein said step of constructing a reduced network is performed by identifying a multitude of paths achieving the maximum flow over the network.
B5. The method of B1, wherein said step of determining a multitude of paths from said source node to said destination node over said reduced network is performed by recurrently identifying a highest path from said source node to said destination node.
B6. The method of B1, wherein said step of splitting said bit sequence into two or more parts is performed using at least one of: a pre-determined size of said two or more parts, a randomly selected size of said two or more parts.
B7. The method of B1, wherein said step of transmitting two or more parts of a bit sequence over two or more paths of said multitude of paths comprises the step of successively assigning each part of said bit sequence to a path of said plurality of paths.
While the present invention has been particularly shown and described with reference to certain exemplary embodiments, it will be understood by one skilled in the art that various changes in detail may be effected therein without departing from the spirit and scope of the invention as defined by claims that can be supported by the written description and drawings. Further, where exemplary embodiments are described with reference to a certain number of elements it will be understood that the exemplary embodiments can be practiced utilizing less than the certain number of elements.
This application claims priority under 35 U.S.0 §119(e) to U.S. Provisional Patent Application No. 61/185,434 filed Jun. 9, 2009 entitled, “Encoding, Decoding And Network Protocol Design For Secure Communication Over Wireline And Wireless Networks,” the content of which is incorporated herein by reference.
Number | Date | Country | |
---|---|---|---|
61185434 | Jun 2009 | US |