US 11,659,002 B2
Extending Media Access Control Security (MACsec) to Network-to-Network Interfaces (NNIs)
Hossein Baheri, Monte Sereno, CA (US); Manoj Velliangiri, Santa Clara, CA (US); and Pramod Kumar Aggarwal, Milpitas, CA (US)
Assigned to Ciena Corporation, Hanover, MD (US)
Filed by Ciena Corporation, Hanover, MD (US)
Filed on May 4, 2021, as Appl. No. 17/307,075.
Prior Publication US 2022/0360605 A1, Nov. 10, 2022
Int. Cl. H04L 9/40 (2022.01); H04L 45/24 (2022.01); H04L 9/08 (2006.01); H04L 41/0654 (2022.01)
CPC H04L 63/162 (2013.01) [H04L 9/0838 (2013.01); H04L 41/0654 (2013.01); H04L 45/24 (2013.01); H04L 63/1408 (2013.01); H04L 63/18 (2013.01)] 20 Claims
OG exemplary drawing
1. An edge device comprising:
one or more User-to-Network Interface (UNI) ports;
a plurality of Network-to-Network Interface (NNI) ports;
a processing device; and
a memory device configured to store a computer program having instructions that, when executed, allow the processing device to:
provide an end-to-end network security on a Media Access Control (MAC) layer, the end-to-end network security defined by the MAC Security (MACsec) protocol, and
provide network path protection by enabling packet routing over multiple paths via the plurality of NNI ports on a network layer by enabling continuity of the MACsec across the plurality of NNI ports from the one or more UNI ports.