-
1.发明申请METHODS FOR INSPECTING SECURITY CERTIFICATES BY NETWORK SECURITY DEVICES TO DETECT AND PREVENT THE USE OF INVALID CERTIFICATES 有权网络安全设备检测安全证书的方法,以检测和防止使用无效证书公开(公告)号:US20120167212A1
公开(公告)日:2012-06-28
申请号:US13411567
申请日:2012-03-04
申请人: Guy Guzner , Ami Haviv , Danny Lieblich , Yahav Gal
发明人: Guy Guzner , Ami Haviv , Danny Lieblich , Yahav Gal
CPC分类号: H04L63/0823 , H04L9/3268 , H04L63/1408
摘要: Disclosed are methods and media for inspecting security certificates. Methods include the steps of: scanning, by a network security device, messages of a security protocol between a server and a client system; detecting the messages having a security certificate; detecting suspicious security certificates from the messages; and aborting particular sessions of the security protocol associated with the suspicious certificates. Preferably, the step of scanning is performed only on messages of server certificate records. Preferably, the method further includes the step of sending an invalid-certificate notice to the server and the client system. Preferably, the step of detecting the suspicious certificates includes detecting a use of an incorrectly-generated private key for the certificates. Preferably, the step of detecting the suspicious certificates includes detecting an unavailability of revocation information for the certificates. Preferably, the step of detecting the suspicious certificates includes detecting a use of an invalid cryptographic algorithm for the certificates.
摘要翻译: 披露了检查安全证书的方法和媒体。 方法包括以下步骤:由网络安全设备扫描服务器和客户端系统之间的安全协议的消息; 检测具有安全证书的消息; 从消息中检测可疑安全证书; 并中止与可疑证书相关联的安全协议的特定会话。 优选地,仅对服务器证书记录的消息执行扫描步骤。 优选地,该方法还包括向服务器和客户端系统发送无效证书通知的步骤。 优选地,检测可疑证书的步骤包括检测证书的使用不正确生成的私钥。 优选地,检测可疑证书的步骤包括检测证书的撤销信息的不可用性。 优选地,检测可疑证书的步骤包括检测对证书的无效加密算法的使用。
-
2.发明授权公开(公告)号:US08850576B2
公开(公告)日:2014-09-30
申请号:US13411567
申请日:2012-03-04
申请人: Guy Guzner , Ami Haviv , Danny Lieblich , Yahav Gal
发明人: Guy Guzner , Ami Haviv , Danny Lieblich , Yahav Gal
CPC分类号: H04L63/0823 , H04L9/3268 , H04L63/1408
摘要: Disclosed are methods and media for inspecting security certificates. Methods include the steps of: scanning, by a network security device, messages of a security protocol between a server and a client system; detecting the messages having a security certificate; detecting suspicious security certificates from the messages; and aborting particular sessions of the security protocol associated with the suspicious certificates. Preferably, the step of scanning is performed only on messages of server certificate records. Preferably, the method further includes the step of sending an invalid-certificate notice to the server and the client system. Preferably, the step of detecting the suspicious certificates includes detecting a use of an incorrectly-generated private key for the certificates. Preferably, the step of detecting the suspicious certificates includes detecting an unavailability of revocation information for the certificates. Preferably, the step of detecting the suspicious certificates includes detecting a use of an invalid cryptographic algorithm for the certificates.
摘要翻译: 披露了检查安全证书的方法和媒体。 方法包括以下步骤:由网络安全设备扫描服务器和客户端系统之间的安全协议的消息; 检测具有安全证书的消息; 从消息中检测可疑安全证书; 并中止与可疑证书相关联的安全协议的特定会话。 优选地,仅对服务器证书记录的消息执行扫描步骤。 优选地,该方法还包括向服务器和客户端系统发送无效证书通知的步骤。 优选地,检测可疑证书的步骤包括检测证书的使用不正确生成的私钥。 优选地,检测可疑证书的步骤包括检测证书的撤销信息的不可用性。 优选地,检测可疑证书的步骤包括检测对证书的无效加密算法的使用。
-
3.发明授权公开(公告)号:US08146159B2
公开(公告)日:2012-03-27
申请号:US12356117
申请日:2009-01-20
申请人: Guy Guzner , Ami Haviv , Danny Lieblich , Yahav Gal
发明人: Guy Guzner , Ami Haviv , Danny Lieblich , Yahav Gal
CPC分类号: H04L63/0823 , H04L9/3268 , H04L63/1408
摘要: Disclosed are methods and media for inspecting security certificates. Methods include the steps of: scanning, by a network security device, messages of a security protocol between a server and a client system; detecting the messages having a security certificate; detecting suspicious security certificates from the messages; and aborting particular sessions of the security protocol associated with the suspicious certificates. Preferably, the step of scanning is performed only on messages of server certificate records. Preferably, the method further includes the step of: sending an invalid-certificate notice to the server and the client system. Preferably, the step of detecting the suspicious certificates includes detecting a use of an incorrectly-generated private key for the certificates. Preferably, the step of detecting the suspicious certificates includes detecting an unavailability of revocation information for the certificates. Preferably, the step of detecting the suspicious certificates includes detecting a use of an invalid cryptographic algorithm for the certificates.
摘要翻译: 披露了检查安全证书的方法和媒体。 方法包括以下步骤:由网络安全设备扫描服务器和客户端系统之间的安全协议的消息; 检测具有安全证书的消息; 从消息中检测可疑安全证书; 并中止与可疑证书相关联的安全协议的特定会话。 优选地,仅对服务器证书记录的消息执行扫描步骤。 优选地,该方法还包括以下步骤:向服务器和客户端系统发送无效证书通知。 优选地,检测可疑证书的步骤包括检测证书的使用不正确生成的私钥。 优选地,检测可疑证书的步骤包括检测证书的撤销信息的不可用性。 优选地,检测可疑证书的步骤包括检测对证书的无效加密算法的使用。
-
4.发明申请METHODS FOR INSPECTING SECURITY CERTIFICATES BY NETWORK SECURITY DEVICES TO DETECT AND PREVENT THE USE OF INVALID CERTIFICATES 有权网络安全设备检测安全证书的方法,以检测和防止使用无效证书公开(公告)号:US20100186086A1
公开(公告)日:2010-07-22
申请号:US12356117
申请日:2009-01-20
申请人: Guy Guzner , Ami Haviv , Danny Lieblich , Yahav Gal
发明人: Guy Guzner , Ami Haviv , Danny Lieblich , Yahav Gal
IPC分类号: G06F21/00
CPC分类号: H04L63/0823 , H04L9/3268 , H04L63/1408
摘要: Disclosed are methods and media for inspecting security certificates. Methods include the steps of: scanning, by a network security device, messages of a security protocol between a server and a client system; detecting the messages having a security certificate; detecting suspicious security certificates from the messages; and aborting particular sessions of the security protocol associated with the suspicious certificates. Preferably, the step of scanning is performed only on messages of server certificate records. Preferably, the method further includes the step of: sending an invalid-certificate notice to the server and the client system. Preferably, the step of detecting the suspicious certificates includes detecting a use of an incorrectly-generated private key for the certificates. Preferably, the step of detecting the suspicious certificates includes detecting an unavailability of revocation information for the certificates. Preferably, the step of detecting the suspicious certificates includes detecting a use of an invalid cryptographic algorithm for the certificates.
摘要翻译: 披露了检查安全证书的方法和媒体。 方法包括以下步骤:由网络安全设备扫描服务器和客户端系统之间的安全协议的消息; 检测具有安全证书的消息; 从消息中检测可疑安全证书; 并中止与可疑证书相关联的安全协议的特定会话。 优选地,仅对服务器证书记录的消息执行扫描步骤。 优选地,该方法还包括以下步骤:向服务器和客户端系统发送无效证书通知。 优选地,检测可疑证书的步骤包括检测证书的使用不正确生成的私钥。 优选地,检测可疑证书的步骤包括检测证书的撤销信息的不可用性。 优选地,检测可疑证书的步骤包括检测对证书的无效加密算法的使用。
-
-
-
搜索结果
4 条记录 (耗时 0.021 秒)
