| CPC H04L 63/0435 (2013.01) [H04L 63/029 (2013.01); H04L 63/0823 (2013.01); H04L 63/166 (2013.01); H04L 63/20 (2013.01)] | 13 Claims |
|
1. A computer network for secure IP to Non-IP communication, wherein the computer network comprises:
a Non-IP subnetwork with at least one frontend device;
an IP subnetwork with at least one backend device;
a gateway configured to connect the Non-IP subnetwork with the IP subnetwork and configured to translate communication therebetween,
wherein the communication between the backend device and the gateway is an IP communication based on an IP security protocol, providing means for authentication and/or encryption; and
wherein the communication between the gateway and the frontend device is a Non-IP communication;
wherein the gateway is configured to mediate handshaking for establishing a secure tunnel for secure end-to-end communication between the backend device and the frontend device, wherein the secure tunnel is set to apply a session key; and
wherein the gateway and the backend device are configured to exchange datagrams with handshaking parameters; and
and wherein the gateway and the frontend device are configured to exchange Non-IP messages with a subset of the handshaking parameters; and
wherein backend device is configured to generate the session key and to authenticate the handshaking incorporating the handshaking parameters; and
wherein frontend device is configured to generate the session key and to authenticate the handshaking incorporating the subset of the handshaking parameters; and
wherein gateway is configured as not being capable of generating the session key from the handshaking parameters.
|