-
1.发明授权Seamless engagement and disengagement of transport layer security proxy services 有权传输层安全代理服务的无缝接合和脱离公开(公告)号:US09124628B2
公开(公告)日:2015-09-01
申请号:US13623127
申请日:2012-09-20
Applicant: Cisco Technology, Inc.
Inventor: Hari Shankar , Jianxin Wang , Daryl Odnert , Manju Radhakrishnan , Andrew E. Ossipov
CPC classification number: H04L63/166
Abstract: Techniques are presented for seamless engagement and disengagement of Transport Layer Security proxy services. A first initial message of a handshaking procedure for a first secure communication session between a first device and a second device is intercepted at a proxy device. The first initial message of the handshaking procedure is saved at the proxy device. A second initial message of a second handshaking procedure for a second secure communication session between the proxy device and the second device is sent from the proxy device to the second device. It is determined from the second handshaking procedure that inspection of the first secure communication session is not to be performed by the proxy device. The first secure communication session is established without examination of the communication traffic by the proxy device.
Abstract translation: 介绍了传输层安全代理服务的无缝接合和脱离接口的技术。 在代理设备处拦截用于第一设备和第二设备之间的第一安全通信会话的握手过程的第一初始消息。 握手过程的第一个初始消息保存在代理设备中。 用于代理设备和第二设备之间的第二安全通信会话的第二握手过程的第二初始消息被从代理设备发送到第二设备。 从第二握手程序确定第一安全通信会话的检查不被代理设备执行。 建立第一安全通信会话而不检查代理设备的通信流量。
-
2.发明申请Seamless Engagement and Disengagement of Transport Layer Security Proxy Services 有权传输层安全代理服务的无缝参与和脱离公开(公告)号:US20140082204A1
公开(公告)日:2014-03-20
申请号:US13623127
申请日:2012-09-20
Applicant: CISCO TECHNOLOGY, INC.
Inventor: Hari Shankar , Jianxin Wang , Daryl Odnert , Manju Radhakrishnan , Andrew E. Ossipov
IPC: G06F15/16
CPC classification number: H04L63/166
Abstract: Techniques are presented for seamless engagement and disengagement of Transport Layer Security proxy services. A first initial message of a handshaking procedure for a first secure communication session between a first device and a second device is intercepted at a proxy device. The first initial message of the handshaking procedure is saved at the proxy device. A second initial message of a second handshaking procedure for a second secure communication session between the proxy device and the second device is sent from the proxy device to the second device. It is determined from the second handshaking procedure that inspection of the first secure communication session is not to be performed by the proxy device. The first secure communication session is established without examination of the communication traffic by the proxy device.
Abstract translation: 介绍了传输层安全代理服务的无缝接合和脱离接口的技术。 在代理设备处拦截用于第一设备和第二设备之间的第一安全通信会话的握手过程的第一初始消息。 握手过程的第一个初始消息保存在代理设备中。 用于代理设备和第二设备之间的第二安全通信会话的第二握手过程的第二初始消息被从代理设备发送到第二设备。 从第二握手程序确定第一安全通信会话的检查不被代理设备执行。 建立第一安全通信会话而不检查代理设备的通信流量。
-
公开(公告)号:US09197650B2
公开(公告)日:2015-11-24
申请号:US13826081
申请日:2013-03-14
Applicant: Cisco Technology, Inc.
Inventor: Manju Radhakrishnan
IPC: H04L12/803 , H04L29/06 , H04L12/827
CPC classification number: H04L63/1408
Abstract: The packets of a communication session between a first device and a second device are monitored at proxy device. A determination is made that full proxy services should be applied to the communication session at the proxy device. After the determination, a packet of a first exchange, the first exchange being initiated prior to the determination, is passed through the proxy device. After the determination, full proxy services are applied to a packet of a second exchange, the second exchange being initiated after the determination.
Abstract translation: 在代理设备处监视第一设备和第二设备之间的通信会话的分组。 确定在代理设备上应该将完整代理服务应用于通信会话。 在确定之后,在确定之前发起的第一交换机的分组被发送通过代理设备。 在确定之后,将完全代理服务应用于第二交换机的分组,第二交换在确定之后启动。
-
公开(公告)号:US20140283000A1
公开(公告)日:2014-09-18
申请号:US13826081
申请日:2013-03-14
Applicant: CISCO TECHNOLOGY, INC.
Inventor: Manju Radhakrishnan
IPC: H04L29/06
CPC classification number: H04L63/1408
Abstract: The packets of a communication session between a first device and a second device are monitored at proxy device. A determination is made that full proxy services should be applied to the communication session at the proxy device. After the determination, a packet of a first exchange, the first exchange being initiated prior to the determination, is passed through the proxy device. After the determination, full proxy services are applied to a packet of a second exchange, the second exchange being initiated after the determination.
Abstract translation: 在代理设备处监视第一设备和第二设备之间的通信会话的分组。 确定在代理设备上应该将完整代理服务应用于通信会话。 在确定之后,在确定之前发起的第一交换机的分组被发送通过代理设备。 在确定之后,将完全代理服务应用于第二交换机的分组,第二交换在确定之后启动。
-
-
-
Search Results
4
records
(took 0.012 seconds)
