首页>
外国专利>
Transparently converting a TLS session connection to facilitate session resumption
Transparently converting a TLS session connection to facilitate session resumption
展开▼
机译:透明地转换TLS会话连接以促进会话恢复
展开▼
页面导航
摘要
著录项
相似文献
摘要
A network-based appliance includes a mechanism to provide TLS inspection with session resumption, but without requiring that a session cache be maintained. To this end, the inspector is configured to cause the TLS client to participate in maintaining the session context, in effect on behalf of the TLS inspector. In operation, when the inspector first receives a session ID from the TLS server, the inspector generates and issues to the client a session ticket that includes the original session ID and other session context information. In this manner, the inspector converts the Session ID-based connection to a Session Ticket-based connection. The session ticket is encrypted by the inspector to secure the session information. When the TLS client presents the session ticket to resume the TLS connection, the inspector decrypts the ticket and retrieves the session ID from it directly. The inspector then uses the original session ID to resume the TLS session.
展开▼