Method and system for performing authentication and traffic control in a certificate-capable session
First Claim
Patent Images
1. An apparatus for authenticating a remote host, said apparatus comprising:
- monitor means for monitoring a network connection between a client and said remote host;
detection means for detecting initiation of a certificate-capable session between said client and said remote host;
analysis means for analyzing information in a digital certificate of said remote host provided in response to said initiation of said certificate-capable session; and
authentication means for authenticating an identity of said remote host based on said information in said digital certificate of said remote host.
0 Assignments
0 Petitions
Accused Products
Abstract
An apparatus performs authentication of a remote host and traffic control by analyzing the contents of a digital certificate of the remote host. A switch may be used to control operation of the apparatus.
73 Citations
33 Claims
-
1. An apparatus for authenticating a remote host, said apparatus comprising:
-
monitor means for monitoring a network connection between a client and said remote host;
detection means for detecting initiation of a certificate-capable session between said client and said remote host;
analysis means for analyzing information in a digital certificate of said remote host provided in response to said initiation of said certificate-capable session; and
authentication means for authenticating an identity of said remote host based on said information in said digital certificate of said remote host. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. An apparatus for controlling a traffic flow across a network connection between a client and a remote host, said apparatus comprising:
-
monitor means for monitoring said network connection;
detection means for detecting initiation of a certificate-capable session between said client and said remote host; and
filter means for using a digital certificate of said remote host provided in response to said initiation of said certificate-capable session to determine an operation to be performed on data in said traffic flow. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
-
Specification