Service denial notification in secure socket layer (SSL) processing
First Claim
1. A data communication gateway, comprising:
- a processor;
a non-transitory memory; and
an application stored in the non-transitory memory that, when executed by the processor;
receives a secure socket layer (SSL) client hello message identifying a server and an application layer communication protocol from a client executing on one of a user equipment (UE), a laptop computer, a notebook computer, a tablet computer, a desktop computer, or a set-top box,determines to deny an application layer communication service access of the client to the identified server, andin response to determining to deny application layer communication service access of the client to the identified server, sending a SSL server hello message comprising a client redirection extension to the client, where the client redirection extension identifies a web server configured to provide a courtesy message associated with the service denial in response to a hypertext transfer protocol (HTTP) GET message or a secure hypertext transfer protocol (HTTPS) GET message, where the web server is different from the server identified in the SSL client hello message.
6 Assignments
0 Petitions
Accused Products
Abstract
A data communication gateway. The gateway comprises a processor, a non-transitory memory, and an application stored in the non-transitory memory. When executed by the processor, the application receives a secure socket layer (SSL) client hello message identifying a server and an application layer communication protocol from a client executing on one of a user equipment (UE), a laptop computer, a notebook computer, a tablet computer, or a desktop computer and determines to deny an application layer communication service access of the client to the identified server. In response to determining to deny service access, sending a SSL server hello message comprising a client redirection extension to the client that identifies a web server configured to provide a courtesy message associated with the service denial in response to a hypertext transfer protocol (HTTP) GET message or a secure hypertext transfer protocol (HTTPS) GET message.
32 Citations
20 Claims
-
1. A data communication gateway, comprising:
-
a processor; a non-transitory memory; and an application stored in the non-transitory memory that, when executed by the processor; receives a secure socket layer (SSL) client hello message identifying a server and an application layer communication protocol from a client executing on one of a user equipment (UE), a laptop computer, a notebook computer, a tablet computer, a desktop computer, or a set-top box, determines to deny an application layer communication service access of the client to the identified server, and in response to determining to deny application layer communication service access of the client to the identified server, sending a SSL server hello message comprising a client redirection extension to the client, where the client redirection extension identifies a web server configured to provide a courtesy message associated with the service denial in response to a hypertext transfer protocol (HTTP) GET message or a secure hypertext transfer protocol (HTTPS) GET message, where the web server is different from the server identified in the SSL client hello message. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A user equipment (UE), comprising:
-
a processor; a non-transitory memory; a display; a cellular radio transceiver; and an application stored in the non-transitory memory that, when executed by the processor; establishes a first transmission control protocol (TCP) connection to a content server, sends a secure socket layer (SSL) client hello message over the first TCP connection via the cellular radio transceiver, where the SSL client hello message identifies the content server and an application layer communication protocol, receives a SSL server hello message over the first TCP connection via the cellular radio transceiver, where the SSL sever hello message comprises a client redirection extension that identifies a web server, where the web server is different from the server identified in the SSL client hello message, in response to the SSL server hello message comprising the client redirection extension, tears down the first TCP connection to the content server, in response to the SSL server hello message comprising the client redirection extension, establishes a second TCP connection to the web server, sends one of a hypertext transfer protocol (HTTP) GET or a secure hypertext transfer protocol (HTTPS) GET over the second TCP connection via the radio transceiver to the web server, receives a courtesy message over the second TCP connection via the radio transceiver from the web server, where the courtesy message comprises information about a denial of communication service associated with the application layer communication protocol identified in the SSL client hello message, and presents information from the courtesy message on the display. - View Dependent Claims (10, 11)
-
-
12. A method of mediating data communication service, comprising:
-
receiving a secure socket layer (SSL) client hello message identifying a server and an application layer communication protocol by a data communication gateway from a client executing on one of a user equipment (UE), a laptop computer, a notebook computer, a tablet computer, a desktop computer, or a set-top box; determining by the data communication gateway to deny an application layer communication service access of the client to the identified server; and in response to determining to deny application layer communication service access of the client to the identified server, sending a SSL server hello message comprising a client redirection extension by the data communication gateway to the client, where the client redirection extension identifies a web server configured to provide a courtesy message associated with the service denial in response to a hypertext transfer protocol (HTTP) GET message or a secure hypertext transfer protocol (HTTPS) GET message, where the web server is different from the server identified in the SSL client hello message. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification