CLS (Cross-Layer Stitch) technology allows two network nodes to obtain the same cross-layer parameter value on two network nodes that have established a transport connection — without transmission over the network and without prior agreement.
This parameter is tightly bound to the transport session, is cryptographically secure, and is unique to each connection. The technology used to obtain it does not introduce detectable anomalies into network traffic. This allows this parameter to be used as control information for synchronizing the behavior of nodes establishing a connection, as well as converting its value into derived values for use in various network connection subsystems.
Технология CLS (Cross-Layer Stitch) позволяет двум узлам сети получить одинаковое значение кросс-уровневого параметра на двух узлах сети, установивших транспортное соединение — без передачи по сети и без предварительного согласования .
Encryption keys, obfuscation parameters (H1/S1/Jc) derived from CLS. No sync over wire, invisible to DPI/ML.
Device auth keys, replay counters, QoS parameters derived from CLS. Synchronisation without signalling.
Implicit authentication, session keys, priority tags derived from CLS. Zero‑overhead for massive MIMO.
HMAC keys for requests, dynamic tokens derived from CLS. Keys never transmitted.
Time‑based tokens derived from CLS. No password transfer, replay protection.
RNG seeds, stream keys derived from CLS. Replica synchronisation without extra round trips.
Per‑stream derived keys from single CLS + Stream ID. Isolation, no per‑stream handshake.
Per‑transaction signature keys derived from CLS, wallet authentication without private key exchange, protection against transaction replay across forks.
Command authentication, rolling counters derived from CLS. Resilient to MITM/replay.
CLS never leaves the endpoints; cannot be intercepted in transit.
Unique per session, compromise of one session does not affect others.
Infinite isolated derived keys (HKDF) without extra transmissions.
The employed one-way mathematical functions remain secure against quantum attacks. For full post‑quantum protection it is enough to replace this functions with a quantum‑safe functions — the core CLS method stays unchanged.
Integrate CLS into 6G, URLLC, IIoT stacks.
Build unblockable, DPI‑resistant tunnels with zero‑overhead sync.
Prevent transaction replay, strengthen wallet authentication.
Zero‑overhead security for sensors, actuators, real‑time control.
Lightweight command authentication, replay protection.
Acquire or sublicense the pending CLS patent family.
Strengthen API security, prevent replay attacks, implicit session binding.
Hidden synchronisation, zero‑overhead authentication for classified / tactical networks.
Implicit authentication, resistance to MITM / DPI for sensitive data flows.
Full tunnel: obfuscation parameters (H1,S1,Jc) derived from CLS, CLS itself never transmitted.
We are seeking interested parties and partners to create a joint commercial product based on CLS (e.g., a VPN with implicit synchronization of tunnel behavior parameters, a secure messenger, etc.), to obtain a patent, license it, or acquire it. Priority date established, formal examination passed — ready for commercial engagement.