	US 12,261,780 B2
	Systems and methods for automatically adjusting a time-based anti-replay window size
Changhong Shen, Shanghai (CN); Chingsung Lin, Fremont, CA (US); Yubei Cao, Cupertino, CA (US); and Sandy X. Chang, Palo Alto, CA (US)
Assigned to CISCO TECHNOLOGY, INC., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on Mar. 8, 2022, as Appl. No. 17/688,994.
Claims priority of provisional application 63/265,226, filed on Dec. 10, 2021.
Prior Publication US 2023/0188469 A1, Jun. 15, 2023
Int. Cl. H04L 47/22 (2022.01); H04L 9/40 (2022.01); H04L 47/27 (2022.01); H04L 47/34 (2022.01)

CPC H04L 47/225 (2013.01) [H04L 47/27 (2013.01); H04L 47/34 (2013.01); H04L 63/0227 (2013.01)]

20 Claims

1. A network node comprising one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors and including instructions that, when executed by the one or more processors, cause the network node to perform operations comprising:

receiving a packet associated with a session;

performing a sequence-based anti-replay check;

determining that the sequence-based anti-replay check rejected the packet;

performing a time-based anti-replay check;

performing a selective anti-replay check; and

determining whether to dynamically adjust a time-based anti-replay window size based on performing at least one of the following checks:

the sequence-based anti-replay check,

the time-based anti-replay check, and

the selective anti-replay check.