Accessing SSL connection data by a third-party
US8782393B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | May 26, 2006 |
| Grant date | Jul 15, 2014 |
| Priority date | — |
| Expiry date | Jul 11, 2028 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/045
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method, system, and apparatus are directed towards enabling access to payload by a third-party sent over an SSL session. The third-party may be a proxy situated between a client and a server. SSL handshake messages are sent between the client and the server to establish the SSL connection. As the SSL handshake messages are routed through the proxy, the proxy may extract data. In addition, one of the client or the server may send another message within, or out-of-band to, the series of SSL handshake message directly to the proxy. The other SSL message may include secret data that the proxy may use to generate a session key for the SSL connection. With the session key, the proxy may receive SSL messages over the SSL connection, modify and/or transpose the payload within the received SSL messages, and/or terminate the SSL connection at the proxy.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.