Patent · US Active

Certificate echoing for session security

US10298404B1 · kind B1 · utility

10Cited by

3References

20Claims

0Family size

Assignee

AMAZON TECHNOLOGIES, INC. · US

Inventors

Bradley Jeffery Behm · Seattle, US
Gregory Branchek Roth · Seattle, US
Gregory Alan Rubin · Seattle, US

Key dates

Filing date	Dec 12, 2014
Grant date	May 21, 2019
Priority date	—
Expiry date	Nov 25, 2035

Classification

Technology area (CPC H)Electricity
CPC primaryH04L9/3247
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A client establishes a cryptographically protected communications session with a server. To detect a man-in-the-middle, the client echoes information about a certificate purportedly received from the server. The information echoed by the client is digitally signed so as to be verifiable by the server without any cryptographic key used in the cryptographically protected communications session or its establishment, thereby rendering the echoed information unmodifiable by a man-in-the-middle without invalidating the signature. The server can therefore verify both the echoed information and the digital signature to determine whether it has established a cryptographically protected communications session with the client or with a man-in-the-middle purporting to be the client.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.