公开(公告)号：US11824918B1

公开(公告)日：2023-11-21

申请号：US16915351

申请日：2020-06-29

Applicant: Amazon Technologies, Inc.

Inventor： Jia Zhao ,  Changbing Zhao ,  Brandy Khicorah Kinlaw ,  Yiwen Wu ,  Jonathan Kozolchyk ,  Peter Bowen

IPC: H04L67/02 ,  H04L67/146

CPC classification number: H04L67/02 ,  H04L67/146

Abstract: Techniques for HyperText Transfer Protocol (HTTP) POST method request translation are described. A router of a Content Distribution Network (CDN) receives an HTTP POST method request seeking to obtain a resource and sends the request to a request translation engine. The request translation engine, based on the request, generates a corresponding HTTP GET method request and sends it back to the router, which obtains a response object from an origin server or from one or more levels of cache implemented by the CDN. The response object is passed back via a response message to the router, which sends the response message back to the request translation engine. The request translation engine, in turn, sends the response message back to the router, which sends the response message back to the originating client.

公开(公告)号：US20180234256A1

公开(公告)日：2018-08-16

申请号：US15431496

申请日：2017-02-13

Applicant: Amazon Technologies, Inc.

Inventor： Peter Bowen

IPC: H04L9/32 ,  H04L29/06

CPC classification number: H04L9/3265 ,  H04L63/0245 ,  H04L63/0428 ,  H04L63/064 ,  H04L63/0823 ,  H04L63/166 ,  H04L63/308

Abstract: A computing device such as a network security device receives one or more digital certificates in a certificate chain and generates one or more surrogate digital certificates that form a surrogate certificate chain. A surrogate certificate may be generated using certificate information from a corresponding digital certificate of the received certificate chain. In some cases, the received certificate chain may have a trusted root certificate that is a trust anchor for the received certificate chain and the generated surrogate certificate chain may have a different trusted root certificate that is the trust anchor for the surrogate certificate chain. Cryptographic keys of the certificate chains may be used to establish cryptographically protected communication sessions. The computing device may monitor network traffic utilizing cryptographic keys included in the certificate chains to encrypt data. The encrypted data may be decrypted and inspected to determine whether sensitive information is transmitted in an improper manner.

公开(公告)号：US10397006B2

公开(公告)日：2019-08-27

申请号：US15431496

申请日：2017-02-13

Applicant: Amazon Technologies, Inc.

Inventor： Peter Bowen

IPC: H04L9/32 ,  H04L29/06

Abstract: A computing device such as a network security device receives one or more digital certificates in a certificate chain and generates one or more surrogate digital certificates that form a surrogate certificate chain. A surrogate certificate may be generated using certificate information from a corresponding digital certificate of the received certificate chain. In some cases, the received certificate chain may have a trusted root certificate that is a trust anchor for the received certificate chain and the generated surrogate certificate chain may have a different trusted root certificate that is the trust anchor for the surrogate certificate chain. Cryptographic keys of the certificate chains may be used to establish cryptographically protected communication sessions. The computing device may monitor network traffic utilizing cryptographic keys included in the certificate chains to encrypt data. The encrypted data may be decrypted and inspected to determine whether sensitive information is transmitted in an improper manner.