CPC H04L 63/20 (2013.01) [H04L 9/3268 (2013.01); H04L 45/02 (2013.01); H04L 63/0823 (2013.01)] | 37 Claims |
1. A method of establishing at least one trusted communication path for transmitting information from a source to a destination in a network of elements including trusted elements according to a trusted path policy, comprising:
receiving, in a resolver, security confidence information identifying each trusted network element of the network and describing at least one security parameter of each of the trusted elements of the network;
registering, by the resolver, each of the trusted elements using the security confidence information;
generating, from the security confidence information, a trusted element unique trusted path digital certificate for each of the trusted elements, the source, and the destination;
transmitting the generated trusted path digital certificates to each of the trusted elements, the source, and the destination;
receiving a trusted path query from the source in the resolver, the trusted path query comprising an address of the destination and a trusted path policy;
generating trusted communication path information describing the at least one trusted communication path according to the trusted path policy, and the security confidence information; and
transmitting trusted communication path information describing at least a portion of the trusted communication path to the source.
|