System and method for providing improved optimization for secure session connections
First Claim
1. An appliance comprising:
- one or more network interfaces configured to facilitate secure communications between a client device and a server, wherein the secure communications involve a plurality of secure session connections comprising a first secure session connection between the client device and the appliance and a second secure session connection between the appliance and another appliance; and
a secure session connection optimizer module comprising a processor configured to;
receive a secure session connection request from the client device,determine, using information from the secure session connection request, whether a lookup table includes information that client authentication is required by the server,if the information indicates that client authentication is not required by the server, provide an instruction to the other appliance, andif the information indicates that client authentication is required by the server, provide the secure connection request to the other appliance over the second secure connection via the appliance decrypting communications received from the first secure session connection using a key shared with the client device, and encrypting the decrypted communications to be sent via the second secure connection using a key shared with the other appliance.
7 Assignments
0 Petitions
Accused Products
Abstract
A system for optimizing network traffic is described. The system includes a plurality of appliances. An appliance comprises one or more network interfaces and a secure session connection optimizer module. The one or more network interfaces are configured to facilitate secure communications between a client device and a server, wherein the secure communications involve a plurality of secure session connections comprising a first secure session connection between the client device and the appliance and a second secure session connection between the appliance and another appliance. The secure session connection optimizer module is configured to receive a secure session connection request from the client device, determine, using information from the secure session connection request, whether a lookup table includes information that client authentication is required by the server, if the information indicates that client authentication is not required by the server, provide an instruction to the other appliance, and if the information indicates that client authentication is required by the server, provide the secure connection request to the other appliance over the second secure connection.
8 Citations
54 Claims
-
1. An appliance comprising:
-
one or more network interfaces configured to facilitate secure communications between a client device and a server, wherein the secure communications involve a plurality of secure session connections comprising a first secure session connection between the client device and the appliance and a second secure session connection between the appliance and another appliance; and a secure session connection optimizer module comprising a processor configured to; receive a secure session connection request from the client device, determine, using information from the secure session connection request, whether a lookup table includes information that client authentication is required by the server, if the information indicates that client authentication is not required by the server, provide an instruction to the other appliance, and if the information indicates that client authentication is required by the server, provide the secure connection request to the other appliance over the second secure connection via the appliance decrypting communications received from the first secure session connection using a key shared with the client device, and encrypting the decrypted communications to be sent via the second secure connection using a key shared with the other appliance. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A method comprising:
-
facilitating secure communications between a client device and a server, wherein the secure communications involve a plurality of secure session connections comprising a first secure session connection between the client device and the appliance and a second secure session connection between the appliance and another appliance; receiving a secure session connection request from the client device; determining, using information from the secure session connection request, whether a lookup table includes information that client authentication is required by the server; if the information indicates that client authentication is not required by the server, providing an instruction to the other appliance; and if the information indicates that client authentication is required by the server, providing the secure connection request to the other appliance over the second secure connection via the appliance decrypting communications received from the first secure session connection using a key shared with the client device, and encrypting the decrypted communications to be sent via the second secure connection using a key shared with the other appliance. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
-
37. A non-transitory computer readable storage medium that stores a set of instructions that is executable by at least one processor of an appliance to cause the appliance to perform a method, the method comprising:
-
facilitating secure communications between a client device and a server, wherein the secure communications involve a plurality of secure session connections comprising a first secure session connection between the client device and the appliance and a second secure session connection between the appliance and another appliance; receiving a secure session connection request from the client device; determining, using information from the secure session connection request, whether a lookup table includes information that client authentication is required by the server; if the information indicates that client authentication is not required by the server, providing an instruction to the other appliance; and if the information indicates that client authentication is required by the server, providing the secure connection request to the other appliance over the second secure connection via the appliance decrypting communications received from the first secure session connection using a key shared with the client device, and encrypting the decrypted communications to be sent via the second secure connection using a key shared with the other appliance. - View Dependent Claims (38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54)
-
Specification