US Patent:
20170366526, Dec 21, 2017
Inventors:
- San Jose CA, US
Marc E. Mosko - Palo Alto CA, US
Ersin Uzun - Campbell CA, US
International Classification:
H04L 29/06
H04L 9/08
H04W 12/04
Abstract:
One embodiment provides a system that facilitates secure communication between computing entities. During operation, the system generates, by a content-consuming device, a first key based on a first consumer-share key and a previously received producer-share key. The system constructs a first interest packet that includes the first consumer-share key and a nonce token which is used as a pre-image of a previously generated first nonce, wherein the first interest has a name that includes a first prefix, and wherein the first nonce is used to establish a session between the content-consuming device and a content-producing device. In response to the nonce token being verified by the content-producing device, the system receives a first content-object packet with a payload that includes a first resumption indicator encrypted based on a second key. The system generates the second key based on a second consumer-share key and the first content-object packet.