Patent · US Active

Bot detection in an edge network using transport layer security (TLS) fingerprint

US11184390B2 · kind B2 · utility

0Cited by

11References

17Claims

0Family size

Assignee

Akamai Technologies, Inc. · US

Inventors

David Senecal · Santa Clara, US
Andrew Kahn · San Francisco, US
Ory Segal · Nes Ziona, IL
Elad Shuster · Herzliya, IL
Duc Nguyen · Santa Clara, US

Key dates

Filing date	May 8, 2018
Grant date	Nov 23, 2021
Priority date	—
Expiry date	Feb 7, 2039

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/144
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

This disclosure describes a technique to fingerprint TLS connection information to facilitate bot detection. The notion is referred to herein as “TLS fingerprinting.” Preferably, TLS fingerprinting herein comprises combining different parameters from the initial “Hello” packet send by the client. In one embodiment, the different parameters from the Hello packet that are to create the fingerprint (the “TLS signature”) are: record layer version, client version, ordered TLS extensions, ordered cipher list, ordered elliptic curve list, and ordered signature algorithms list. Preferably, the edge server persists the TLS signature for the duration of a session.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.