US 12,425,219 B2
Generating a secure key exchange authentication request using a security parameter index transform
Richard Mark Sczepczenski, Hyde Park, NY (US); Daniel Hughes, Poughkeepsie, NY (US); and Alol Antony Crasta, Poughkeepsie, NY (US)
Assigned to International Business Machines Corporation, Armonk, NY (US)
Filed by International Business Machines Corporation, Armonk, NY (US)
Filed on Aug. 31, 2023, as Appl. No. 18/459,253.
Prior Publication US 2025/0080348 A1, Mar. 6, 2025
Int. Cl. H04L 9/32 (2006.01); H04L 9/08 (2006.01)
CPC H04L 9/321 (2013.01) [H04L 9/0819 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
receiving, from a responder channel on a responder node, a Secure Key Exchange (SKE) Security Association (SA) Initialization Response message at a local key manager (LKM) executing on an initiator node to initiate a secure communication between an initiator channel on the initiator node and the responder channel;
obtaining a selected Security Parameter Index (SPI) Transform, an SA Index, and SPI Transform values;
creating an SPI based on the SPI Transform using the SA Index and the SPI Transform values;
building an SKE Authentication Request message based on the SKE SA Initialization Response message and the SPI, wherein the SKE Authentication Request message comprises the SPI, a set of cryptographic keys, and a list of encryption algorithms; and
transmitting the SKE Authentication Request message from the LKM to the responder channel on the responder node using the initiator channel.