Description:

Invention Summary
This method encodes and relays the original TCP flow information across HAIPE without any modifications while preserving the same level of security. It then reconstructs new TCP streams and encapsulates HAIPE-encrypted original TCP packets, which can be natively handled by PEPs and thus full TCP performance can be achieved. This method is also applicable to both IPv4 and IPv6.
Market Opportunity
According to IBISWorld, the $8 Billion satellite telecommunications provider industry is expected to grow at an annual growth rate of 3.1% over each year from 2019 to 2024. Revenue is anticipated to continue rising over the five years to 2024 as demand for telecommunications remains high and new markets emerge. New satellites are expected to boost satellite operators' capacity, enabling them to increase coverage offerings and reduce prices to better combat external competition. Increased demand for ubiquitous communication services from consumers and businesses alike will continue as connectivity and broadband access become essential elements of social and commercial infrastructure.
Features and Benefits
• A satellite communication environment has a high latency and a high data error rate, and thus the performance of TCP is greatly impaired. To overcome this, Performance Enhancing Proxies (PEPs) are commonly deployed around the satellite links. However, the operation of PEPs is disabled when TCP traffic is encrypted by High Assurance Internet Protocol Encryptions (HAIPE). As a result the performance of the HAIPE-encrypted TCP traffic across satellite links becomes very low. Numerous approaches have been proposed to resolve this problem, but a practical solution is yet to be developed.
• In this research, we have developed a method that can achieve the high performance offered by PEPs for HAIPE-encrypted TCP traffic across satellite links. This method encodes and relays the original TCP flow information across HAIPE without any modification to the existing HAIPE while preserving the same level of security. It then reconstructs new TCP streams and encapsulates HAIPE-encrypted original TCP packets in them.
• These new TCP streams can be natively handled by PEPs and thus the full TCP performance can be achieved. This method is also applicable to both IPv4 and IPv6. However, this scheme suffers from a phenomenon called TCP meltdown. We propose a method that can prevent TCP meltdown to overcome these deficiencies.
Intellectual Property
U.S. Patent 11,005,764