NETWORK SECURITY WITH SERVER NAME INDICATION

NETWORK SECURITY WITH SERVER NAME INDICATION

A computing device receives (200) an IP address and a port number related to a transport protocol and an application protocol version and other attributes related to an application protocol extracted from an encrypted client hello, ECH, enabled transport layer security, TLS, connection request from...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Savin, Filip, Marozas, Leonardas, Kasslin, Kimmo
Format: Patent
Sprache:eng ; fre ; ger
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:A computing device receives (200) an IP address and a port number related to a transport protocol and an application protocol version and other attributes related to an application protocol extracted from an encrypted client hello, ECH, enabled transport layer security, TLS, connection request from a client computing device and extracts (201), from the database, a set of all known hostnames matching the IP address. The device generates (202) a reduced list of the set of all hostnames matching the IP address and assigns (203) a confidence score to each hostname of the reduced list based on an alias count and/or a popularity ranking of the hostname. Finally, a prioritized list of one or more hostnames is generated (204) based on the confidence score, the prioritized list indicating the one or more hostnames in the order of descending probability of being requested in the ECH enabled TLS connection request.