US 11,856,063 B2
Systems and methods for cloud survivability for cloud orchestrated internet protocol security (IPsec) security associations (SA)
Gopalakrishnan Gunasekaran, Santa Clara, CA (US); Shreekanth Chandranna, Santa Clara, CA (US); and Bhagvan Cheeyandira, Santa Clara, CA (US)
Assigned to Hewlett Packard Enterprise Development LP, Spring, TX (US)
Filed by HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP, Houston, TX (US)
Filed on Apr. 1, 2021, as Appl. No. 17/220,812.
Prior Publication US 2022/0321668 A1, Oct. 6, 2022
Int. Cl. H04L 29/08 (2006.01); H04L 67/141 (2022.01); H04L 9/40 (2022.01)
CPC H04L 67/141 (2013.01) [H04L 63/0272 (2013.01); H04L 63/0823 (2013.01); H04L 63/164 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
establishing, by an initiator device, an encrypted tunnel between the initiator device and a responder device of a cloud service based on a set of parameters obtained from the cloud service;
determining, by the initiator device, whether there is a loss of connectivity to the cloud service from the initiator device or the responder device, wherein the cloud service supports respective communication links to the responder device and the initiator device via a network associated with the cloud service;
in response to determining the loss of connectivity due to not receiving a response from the cloud service for a message sent from the initiator device or the responder device for a rekeying of the encrypted tunnel, establishing, by the initiator device using the set of parameters of the encrypted tunnel, a survivability tunnel between the initiator device and the responder device bypassing the network; and
in response to determining that the survivability tunnel is successfully established, communicatively coupling the initiator device and the responder device via the survivability tunnel as a failsafe to the encrypted tunnel.