| 发明名称 |
SECURE COMMUNICATION SECRET SHARING |
| 摘要 |
Embodiments are directed to sharing secure communication secrets with a network monitoring device (NMD). The NMD may passively monitor network packets communicated between client computers and server computers. If a secure communication session is established between a client computer and a server computer, a key provider may provide the NMD a session key that corresponds to the secure communication session. The NMD may buffer each network packet associated with the secure communication session until the NMD is provided a session key for the secure communication session. The NMD may use the session key to decrypt network packets communicated between the client computer and the server computer. The NMD may then proceed to analyze the secure communication session based on the contents of the decrypted network packets. |
| 申请公布号 |
US2016315916(A1) |
申请公布日期 |
2016.10.27 |
| 申请号 |
US201615150354 |
申请日期 |
2016.05.09 |
| 申请人 |
ExtraHop Networks, Inc. |
发明人 |
Rothstein Jesse Abraham;Higgins Benjamin Thomas;Hatch Brian David |
| 分类号 |
H04L29/06;H04L12/26 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method for monitoring communication over a network with a network monitoring device (NMD) that performs actions, comprising:
providing correlation information for one or more network packets that are employed to establish a secure communication session; and providing a session key and other correlation information that corresponds to the secure communication session; providing a network connection flow that corresponds to the secure communication session based on a correlation of the one or more of the other correlation information with other correlation information; decrypting one or more packets in the network connection flow communicated over the secure communication session; and providing a display to a user of analysis of the secure communication session. |
| 地址 |
Seattle WA US |
