Invention Grant
US08869259B1 Cloud based inspection of secure content avoiding man-in-the-middle attacks
有权
基于云的检查安全内容,避免中间人攻击
- Patent Title: Cloud based inspection of secure content avoiding man-in-the-middle attacks
- Patent Title (中): 基于云的检查安全内容,避免中间人攻击
-
Application No.: US13111753Application Date: 2011-05-19
-
Publication No.: US08869259B1Publication Date: 2014-10-21
- Inventor: Sivaprasad Udupa , Narinder Paul , Jose Raphel , Kailash Kailash
- Applicant: Sivaprasad Udupa , Narinder Paul , Jose Raphel , Kailash Kailash
- Applicant Address: US CA San Jose
- Assignee: Zscaler, Inc.
- Current Assignee: Zscaler, Inc.
- Current Assignee Address: US CA San Jose
- Agency: Clements Bernard PLLC
- Agent Lawrence A. Baratta, Jr.; Christopher L. Bernard
- Main IPC: H04L29/06
- IPC: H04L29/06
Abstract:
A cloud based system that facilitates inspection of secure content and inexpensively detects the presence of a Man-in-the-Middle attack in a client-server communication is disclosed. Through inspection of the server certificate, no Man-in-the-Middle attack between server and the system is ensured; through inspection and designation of the client certificate, absence of a Man-in-the-Middle attack between the cloud based system and the client is ensured. In this way, the cloud based system can perform its usual policy enforcement functions with respect to secure content while avoiding Man-in-the-Middle attacks.
Information query
