DETECTION OF MAN-IN-THE-MIDDLE IN HTTPS TRANSACTIONS INDEPENDENT OF CERTIFICATE TRUST CHAIN

DETECTION OF MAN-IN-THE-MIDDLE IN HTTPS TRANSACTIONS INDEPENDENT OF CERTIFICATE TRUST CHAIN

Systems and computer program products implement methods for detecting a man-in-the-middle (MITM) during HTTPS communications. The methods include establishing a TCP connection for the retrieval of a web page from a domain name using an alternate IP address that is different from the IP address of th...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Nyíri, Juraj, Doleh, Yaser K, Bolger, Rosa M, Marzorati, Mauro
Format: Patent
Sprache:eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator Nyíri, Juraj
Doleh, Yaser K
Bolger, Rosa M
Marzorati, Mauro
description Systems and computer program products implement methods for detecting a man-in-the-middle (MITM) during HTTPS communications. The methods include establishing a TCP connection for the retrieval of a web page from a domain name using an alternate IP address that is different from the IP address of the target domain where receipt of the target web page in response to a HTTP GET message indicates that a MITM is present, using a domain name as the SNI in a TLS connection and an alternate domain name in a HTTP GET message where receipt of a target web page of the alternate domain name indicates that a MITM is present, and generating an alternate domain name using a domain generation algorithm and using the generated alternate domain name as the SNI in the TLS message where receipt of a certificate for the generated alternate domain name indicates that a MITM is present.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_US2020213335A1</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>US2020213335A1</sourcerecordid><originalsourceid>FETCH-epo_espacenet_US2020213335A13</originalsourceid><addsrcrecordid>eNqNi0EKwjAQRbtxIeodBlwHrMEDDMmEDNhpaaYrF6VIXIkW6v0xigeQD__D4_11dfGk5JRbgTZAg2JYjEYyDXt_JmCBqNol0B4l4ddMhXrqqJTo5-aoVw7sUKl4Q1JwEVm21eo23Ze8--2m2gdSF02en2Ne5umaH_k1Dul4KKmttSes7X_WGzQqMsw</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>DETECTION OF MAN-IN-THE-MIDDLE IN HTTPS TRANSACTIONS INDEPENDENT OF CERTIFICATE TRUST CHAIN</title><source>esp@cenet</source><creator>Nyíri, Juraj ; Doleh, Yaser K ; Bolger, Rosa M ; Marzorati, Mauro</creator><creatorcontrib>Nyíri, Juraj ; Doleh, Yaser K ; Bolger, Rosa M ; Marzorati, Mauro</creatorcontrib><description>Systems and computer program products implement methods for detecting a man-in-the-middle (MITM) during HTTPS communications. The methods include establishing a TCP connection for the retrieval of a web page from a domain name using an alternate IP address that is different from the IP address of the target domain where receipt of the target web page in response to a HTTP GET message indicates that a MITM is present, using a domain name as the SNI in a TLS connection and an alternate domain name in a HTTP GET message where receipt of a target web page of the alternate domain name indicates that a MITM is present, and generating an alternate domain name using a domain generation algorithm and using the generated alternate domain name as the SNI in the TLS message where receipt of a certificate for the generated alternate domain name indicates that a MITM is present.</description><language>eng</language><subject>ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRICITY ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2020</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20200702&amp;DB=EPODOC&amp;CC=US&amp;NR=2020213335A1$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20200702&amp;DB=EPODOC&amp;CC=US&amp;NR=2020213335A1$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>Nyíri, Juraj</creatorcontrib><creatorcontrib>Doleh, Yaser K</creatorcontrib><creatorcontrib>Bolger, Rosa M</creatorcontrib><creatorcontrib>Marzorati, Mauro</creatorcontrib><title>DETECTION OF MAN-IN-THE-MIDDLE IN HTTPS TRANSACTIONS INDEPENDENT OF CERTIFICATE TRUST CHAIN</title><description>Systems and computer program products implement methods for detecting a man-in-the-middle (MITM) during HTTPS communications. The methods include establishing a TCP connection for the retrieval of a web page from a domain name using an alternate IP address that is different from the IP address of the target domain where receipt of the target web page in response to a HTTP GET message indicates that a MITM is present, using a domain name as the SNI in a TLS connection and an alternate domain name in a HTTP GET message where receipt of a target web page of the alternate domain name indicates that a MITM is present, and generating an alternate domain name using a domain generation algorithm and using the generated alternate domain name as the SNI in the TLS message where receipt of a certificate for the generated alternate domain name indicates that a MITM is present.</description><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRICITY</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2020</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNi0EKwjAQRbtxIeodBlwHrMEDDMmEDNhpaaYrF6VIXIkW6v0xigeQD__D4_11dfGk5JRbgTZAg2JYjEYyDXt_JmCBqNol0B4l4ddMhXrqqJTo5-aoVw7sUKl4Q1JwEVm21eo23Ze8--2m2gdSF02en2Ne5umaH_k1Dul4KKmttSes7X_WGzQqMsw</recordid><startdate>20200702</startdate><enddate>20200702</enddate><creator>Nyíri, Juraj</creator><creator>Doleh, Yaser K</creator><creator>Bolger, Rosa M</creator><creator>Marzorati, Mauro</creator><scope>EVB</scope></search><sort><creationdate>20200702</creationdate><title>DETECTION OF MAN-IN-THE-MIDDLE IN HTTPS TRANSACTIONS INDEPENDENT OF CERTIFICATE TRUST CHAIN</title><author>Nyíri, Juraj ; Doleh, Yaser K ; Bolger, Rosa M ; Marzorati, Mauro</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_US2020213335A13</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng</language><creationdate>2020</creationdate><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRICITY</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>Nyíri, Juraj</creatorcontrib><creatorcontrib>Doleh, Yaser K</creatorcontrib><creatorcontrib>Bolger, Rosa M</creatorcontrib><creatorcontrib>Marzorati, Mauro</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Nyíri, Juraj</au><au>Doleh, Yaser K</au><au>Bolger, Rosa M</au><au>Marzorati, Mauro</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>DETECTION OF MAN-IN-THE-MIDDLE IN HTTPS TRANSACTIONS INDEPENDENT OF CERTIFICATE TRUST CHAIN</title><date>2020-07-02</date><risdate>2020</risdate><abstract>Systems and computer program products implement methods for detecting a man-in-the-middle (MITM) during HTTPS communications. The methods include establishing a TCP connection for the retrieval of a web page from a domain name using an alternate IP address that is different from the IP address of the target domain where receipt of the target web page in response to a HTTP GET message indicates that a MITM is present, using a domain name as the SNI in a TLS connection and an alternate domain name in a HTTP GET message where receipt of a target web page of the alternate domain name indicates that a MITM is present, and generating an alternate domain name using a domain generation algorithm and using the generated alternate domain name as the SNI in the TLS message where receipt of a certificate for the generated alternate domain name indicates that a MITM is present.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng
recordid cdi_epo_espacenet_US2020213335A1
source esp@cenet
subjects ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title DETECTION OF MAN-IN-THE-MIDDLE IN HTTPS TRANSACTIONS INDEPENDENT OF CERTIFICATE TRUST CHAIN
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-03T21%3A13%3A36IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=Ny%C3%ADri,%20Juraj&rft.date=2020-07-02&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EUS2020213335A1%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true