NETWORK SECURITY WITH SERVER NAME INDICATION

NETWORK SECURITY WITH SERVER NAME INDICATION

A computing device receives an IP address extracted from an encrypted client hello (ECH) enabled transport layer security (TLS) connection request from a client computing device and identifies, from a list of a plurality of hostnames, a set of hostnames matching the IP address. The device generates...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Savin, Filip, Marozas, Leonardas, Kasslin, Kimmo
Format: Patent
Sprache:eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:A computing device receives an IP address extracted from an encrypted client hello (ECH) enabled transport layer security (TLS) connection request from a client computing device and identifies, from a list of a plurality of hostnames, a set of hostnames matching the IP address. The device generates a reduced list of the set hostnames matching the IP address and generates a reduced list of the set of hostnames matching the IP address by removing hostnames that do not support an ECH extension of a TLS standard from the set of hostnames matching the IP address. Finally, the device retrieves reputation information related to one or more hostnames of the reduced list for protecting the client computing device and/or a computer network based on the reputation information.