Patent · US Active

Implicit SSL certificate management without server name indication (SNI)

US8738902B2 · kind B2 · utility

38Cited by

2References

20Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Won Suk Yoo · Redmond, US
Eok Kim · Wonju-si, KR
Jenny Lawrance · Redmond, US
Aniello Scotto Di Marco · Redmond, US
Yamini Jagadeesan · Redmond, US
Wade Hilmo · Snohomish, US

Key dates

Filing date	Jan 27, 2012
Grant date	May 27, 2014
Priority date	—
Expiry date	Jul 10, 2032

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2101/663
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Embodiments disclose a reverse lookup using an IP:Port-to-hostname table to identify a hostname when only an IP address and port is present in an SSL hello connection, which may occur, for example, when a non-SNI-capable client initiates the SSL hello. Once the hostname is successfully looked up, a naming convention is used to simplify the management and identification of SSL certificates. Different types of SSL certificates are supported. Multiple hostname matches may be associated with a given IP address and port in the IP:Port-to-hostname table. In such case, the first-matching hostname is always used with the naming convention to identify related SSL certificates. The naming convention is applied in such a way that it will first look for the most matching file name to the least matching file name.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.