	US 12,483,539 B2
	Protocol translation for encrypted data traffic
Nicolae Paladi, Sollentuna (SE); and Pegah Nikbakht Bideh, Lund (SE)
Assigned to Canary Bit AB, Sollentuna (SE)
Appl. No. 18/564,006
Filed by Canary Bit AB, Sollentuna (SE)
PCT Filed May 25, 2021, PCT No. PCT/SE2021/050491 § 371(c)(1), (2) Date Nov. 24, 2023, PCT Pub. No. WO2022/250585, PCT Pub. Date Dec. 1, 2022.
Prior Publication US 2024/0275768 A1, Aug. 15, 2024
Int. Cl. H04L 9/40 (2022.01)

CPC H04L 63/0464 (2013.01)

19 Claims

1. A method of a network device of enabling communication protocol translation for encrypted data traffic between a first device and a second device, the method comprising:

receiving, from the first device, data intended for the second device;

triggering creation of a trusted execution environment (“TEE”);

requesting attestation of the created TEE from a trusted central device having access to a certificate authority (“CA”), performing the attestation;

receiving, over a secure communication channel established with the trusted central device upon successful attestation, protocol translation instructions and cryptographic credentials required for securely communicating with the first device and the second device;

decrypting, in the TEE, any received encrypted data from the first device using the received cryptographic credentials, translating the decrypted data from a first protocol format utilized by the first device into a second protocol format utilized by the second device in the TEE based on the received translation instructions, and encrypting the translated data in the TEE using the received cryptographic credentials, wherein the credentials are configured to allow the second device to decrypt the encrypted translated data; and

sending the encrypted translated data to the second device.