	US 12,231,405 B2
	Selecting a VPN connection using negotiated cryptographic algorithms to improve throughput
Shivakumar Thangapandi, Redmond, WA (US); Abhishek Gupta, Redmond, WA (US); Vikrant Arora, Redmond, WA (US); and Arun Venkatachalam, Redmond, WA (US)
Assigned to MICROSOFT TECHNOLOGY LICENSING, LLC, Redmond, WA (US)
Filed by MICROSOFT TECHNOLOGY LICENSING, LLC, Redmond, WA (US)
Filed on Nov. 3, 2021, as Appl. No. 17/518,382.
Application 17/518,382 is a continuation in part of application No. 17/332,752, filed on May 27, 2021, granted, now 11,477,176.
Prior Publication US 2022/0385637 A1, Dec. 1, 2022
Int. Cl. H04L 9/40 (2022.01)

CPC H04L 63/0272 (2013.01) [H04L 63/0485 (2013.01)]

20 Claims

1. A method of improving throughput for data traffic to be communicated via a virtual private network (VPN), comprising:

establishing multiple VPN connections between a network VPN gateway and a remote VPN gateway;

assigning a different cryptographic algorithm to each of the multiple VPN connections;

configuring, by one or more processors, a routing preference to selectively choose a first VPN connection that uses a first assigned cryptographic algorithm that has better network performance, with respect to throughput, compared to a second assigned cryptographic algorithm used by a second VPN connection;

receiving an indication that a data flow is to be routed between the network VPN gateway and the remote VPN gateway;

selecting, based at least in part on the routing preference and for the data flow, the first VPN connection that uses the first assigned cryptographic algorithm over the second VPN that uses the second assigned cryptographic algorithm; and

routing the data flow to the first VPN connection that uses the first assigned cryptographic algorithm based on the selection.