&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
          function printpage()
          {
          window.print()
          }
        </script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=11943209.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 11,943,209 B2</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Rekeying a security association SA</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Sandeep Kampati,  Bangalore (IN);  Bharath Soma Satya Meduri,  Bangalore (IN);  Dharmanandana Reddy Pothula,  Bangalore (IN); and  De Sheng,  Shanghai (CN)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  HUAWEI TECHNOLOGIES CO., LTD.,  Shenzhen (CN)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  HUAWEI TECHNOLOGIES CO., LTD.,  Guangdong (CN)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on May   17, 2021, as Appl. No. 17/321,499.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 17/321,499 is a continuation of application No. PCT/CN2019/117884, filed on Nov.  13, 2019.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Claims priority of application No. 201831042955 (IN), filed on Nov.  15, 2018.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Prior Publication US 2021/0273928 A1, Sep.  2, 2021</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>H04L 9/40</b></i> (2022.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>H04L 63/061</b></i> (2013.01)&#xa0;[<i><b>H04L 63/0245</b></i> (2013.01); <i><b>H04L 63/029</b></i> (2013.01); <i><b>H04L 63/0435</b></i> (2013.01)]</td>
            <td class="table_data" align="right"><b>34 Claims</b></td>
          </tr>
        </table>
        <center><img src="US11943209-20240326-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A method for rekeying a security association (SA) in a network system including a first network device and a second network device, comprising:<div class="claim_text">establishing an Internet Key Exchange (IKE) tunnel and an Internet Protocol Security (IPSec) tunnel between the first network device and the second network device; and</div>
                <div class="claim_text">negotiating to rekey a SA by:<div class="claim_text">sending, by the first network device, a first rekey request to the second network device for rekeying a SA, wherein the first rekey request carries a first Security Parameter Index (SPI) and a cryptographic suite associated with the first network device;</div>
                  <div class="claim_text">receiving, by the first network device, a first rekey response from the second network device, wherein the first rekey response carries a second SPI and does not carry a cryptographic suite associated with the second network device when there is no change in a cryptographic suite associated with the second network device; and</div>
                  <div class="claim_text">wherein:</div>
                  <div class="claim_text">when the SA is an IPSec SA which is a child SA of an IKE SA, the first rekey request does not carry a Traffic Selector (TS) payload carrying flow information associated with the first network device when there is no change in a flow information associated with the first network device; wherein the first rekey response does not carry a TS payload associated with the second network device when there is no change in a flow information associated with the second network device; and</div>
                </div>
                <div class="claim_text">wherein rekeying, by the first network device, the SA without changing flow information associated with the SA.</div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>