Invention Grant
US09553856B2 Secure session capability using public-key cryptography without access to the private key
有权
使用公共密钥加密技术安全的会话功能,无需访问私钥
- Patent Title: Secure session capability using public-key cryptography without access to the private key
- Patent Title (中): 使用公共密钥加密技术安全的会话功能,无需访问私钥
-
Application No.: US14315241Application Date: 2014-06-25
-
Publication No.: US09553856B2Publication Date: 2017-01-24
- Inventor: Sébastien Andreas Henry Pahl , Matthieu Philippe François Tourne , Piotr Sikora , Ray Raymond Bejjani , Dane Orion Knecht , Matthew Browning Prince , John Graham-Cumming , Lee Hahn Holloway , Albertus Strasheim
- Applicant: CloudFlare, Inc.
- Applicant Address: US CA San Francisco
- Assignee: CLOUDFLARE, INC.
- Current Assignee: CLOUDFLARE, INC.
- Current Assignee Address: US CA San Francisco
- Agency: Nicholson De Vos Webster & Elliott LLP
- Main IPC: H04L29/06
- IPC: H04L29/06 ; H04L9/08 ; G06F21/33
Abstract:
A server establishes a secure session with a client device where a private key used in the handshake when establishing the secure session is stored in a different server. During the handshake procedure, the server receives a premaster secret that has been encrypted using a public key bound with a domain for which the client device is attempting to establish a secure session with. The server transmits the encrypted premaster secret to another server for decryption. The server receives the decrypted premaster secret and continues with the handshake procedure including generating a master secret from the decrypted premaster secret and generating one or more session keys that are used in the secure session for encrypting and decrypting communication between the client device and the server.
Public/Granted literature
- US20140310526A1 SECURE SESSION CAPABILITY USING PUBLIC-KEY CRYPTOGRAPHY WITHOUT ACCESS TO THE PRIVATE KEY Public/Granted day:2014-10-16
Information query
