Transport layer security latency mitigation
First Claim
Patent Images
1. A method comprising:
- accruing, by a server proxy, a server random number and a server cipher suite parameter from a server;
initiating, by the server proxy upon receiving a client hello message, an authentication protocol handshake with the server;
generating, by the server proxy, a server hello message and a server certificate message based on the server random number and the server cipher suite parameter, wherein the server hello message and a server certificate message are sent to a client device that the server proxy is proxying for the server; and
forwarding, by the server proxy to the server device, the client hello message from the server proxy, wherein the forwarding is performed upon receiving the client hello message,wherein a client proxy connects with the client device at a higher latency delay than with the server proxy.
2 Assignments
0 Petitions
Accused Products
Abstract
Some embodiments include a method of utilizing a proxy device to mitigate latency related to a transport layer security (TLS) handshake protocol. The proxy device can be an untrusted proxy of a server or a client. The proxy device can negotiate cipher suites on behalf of its principal (e.g., the server or the server) without storing private keys of its principal. The use of the proxy device can reduce a typical two round-trips taken between the server and the client into a single round-trip.
-
Citations
19 Claims
-
1. A method comprising:
-
accruing, by a server proxy, a server random number and a server cipher suite parameter from a server; initiating, by the server proxy upon receiving a client hello message, an authentication protocol handshake with the server; generating, by the server proxy, a server hello message and a server certificate message based on the server random number and the server cipher suite parameter, wherein the server hello message and a server certificate message are sent to a client device that the server proxy is proxying for the server; and forwarding, by the server proxy to the server device, the client hello message from the server proxy, wherein the forwarding is performed upon receiving the client hello message, wherein a client proxy connects with the client device at a higher latency delay than with the server proxy. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A server proxy comprising:
-
one or more processors and a memory storing executable instructions that, when executed by the one or more processors, implement a process, wherein the process includes; accruing a server random number and a server cipher suite parameter from a server; initiating an authentication protocol handshake with the server upon receiving a client hello message; generating a server hello message and a server certificate message based on the server random number and the server cipher suite parameter to send to a client device that is oblivious that the server proxy is proxying for the server; and forwarding the client hello message from the server proxy to the server upon receiving the client hello message, wherein a client proxy connects with the client device at a higher latency delay than with the server proxy. - View Dependent Claims (14, 15, 16, 17)
-
-
18. A non-transitory computer-readable storage medium storing instructions that, when executed by a computing system, cause the computing system to perform operations comprising:
-
accruing, by a server proxy, a server random number and a server cipher suite parameter from a server; receiving a client hello message from a client proxy, wherein the server proxy does not receive a message from the client proxy indicating that the client proxy is proxying for a client device; initiating, by the server proxy upon receiving the client hello message, an authentication protocol handshake with the server; generating, by the server proxy, a server hello message and a server certificate message based on the server random number and the server cipher suite parameter, wherein the server hello message and a server certificate message are sent to the client device, which is oblivious that the server proxy is proxying for the server; and forwarding, by the server proxy to the server, the client hello message from the server proxy to the server, wherein the forwarding is performed upon receiving the client hello message, wherein the client proxy connects with the client device at a higher latency delay than with the server proxy. - View Dependent Claims (19)
-
Specification