×

Secure communication secret sharing

  • US 9,338,147 B1
  • Filed: 04/24/2015
  • Issued: 05/10/2016
  • Est. Priority Date: 04/24/2015
  • Status: Active Grant
First Claim
Patent Images

1. A method for monitoring communication over a network with a network monitoring device (NMD) that performs actions, comprising:

  • passively monitoring a plurality of network packets that are communicated between one or more client computers and one or more server computers;

    obtaining correlation information regarding a secure communication session, wherein the correlation information is determined from one or more network packets that are associated with one or more handshake messages used to establish the secure communication session; and

    when the secure communication session is established between a client computer and a server computer, perform further actions, including;

    obtaining a session key and other correlation information that corresponds to the secure communication session, wherein the session key and other correlation information is provided by a key provider;

    determining a network connection flow that corresponds to the secure communication session based on a match of the other correlation information with other correlation information provided by the key provider;

    decrypting one or more network packets in the network connection flow that are communicated between the client computer and the server computer over the secure communication session; and

    providing analysis of the secure communication session based on the contents of the one or more decrypted network packets.

View all claims
  • 6 Assignments
Timeline View
Assignment View
    ×
    ×