HTTPS communication tunnel safety examination and content filtering system and method

A technology of security inspection and content filtering, applied in transmission systems, electrical components, etc., can solve problems such as sensitive data leakage, user account information and password leakage, and achieve the effect of eliminating the risk of leakage

Active Publication Date: 2008-03-12
FORTINET
View PDF1 Cites 24 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This creates the danger that sensitive data could be leaked
For example, when a user visits the bank's website, their account information and password are decrypted into

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • HTTPS communication tunnel safety examination and content filtering system and method
  • HTTPS communication tunnel safety examination and content filtering system and method
  • HTTPS communication tunnel safety examination and content filtering system and method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0059] Specific embodiments of the present invention will be described in detail below in conjunction with the accompanying drawings. Fig. 2 is a network structure diagram of a specific embodiment of the present invention. As shown in FIG. 2 , the HTTPS (Secure Hypertext Transfer Protocol) communication tunnel security inspection and content filtering system 1 provided by the present invention includes an HTTPS proxy server 11, a security inspection and content filtering device 12, and a digital certificate analysis device 13.

[0060] The HTTPS proxy server 11 is used to proxy the HTTPS connection between the client 2 and the server end 3, and forwards the digital certificate in the HTTPS connection data sent by the client 2 to the server end 3 to the digital certificate analysis device 13, and the HTTPS connection data to decrypt.

[0061] The digital certificate analysis device 13 also includes a digital certificate database 13a, which is used to store data certificates, a...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present invention relates to a method and a system for security hypertext transmission protocol communication tunnel security checking and content filtering, which are used to check the security hypertext transmission protocol connection between a client side and a sever side. The method comprises the steps that, step one, a security hypertext transmission protocol proxy server forwards the digital certificate in security hypertext transmission protocol connection data to a digital certificate analysis device; step two, the digital certificate analysis device compares the digital certificate in the security hypertext transmission protocol connection data with the digital certificate stored, if the digital certificate transmitted by the security hypertext transmission protocol proxy server belongs to a digital certificate white list tabulation, step three is performed; step three, the security hypertext transmission protocol proxy server leads the client side and the sever side to be connected directly.

Description

technical field [0001] The invention relates to a computer network system, in particular to an HTTPS (safe hypertext transfer protocol) communication tunnel safety inspection and content filtering system. Background technique [0002] In the previous HTTPS communication tunnel security inspection and content filtering system, as shown in Figure 1, the HTTPS proxy server decrypts the HTTPS connection content, and the security inspection and content filtering device processes the decrypted data and returns the processed data to HTTPS proxy server, and the HTTPS proxy server encrypts it and sends it out. The US patent application US20030131256A1 provides a detailed technical solution. In the above prior art, the HTTPS connection is decrypted into plaintext at the HTTPS proxy server. This creates the danger that sensitive data may be leaked. For example, when a user visits the bank's website, their account information and password are decrypted into plain text at the HTTPS pro...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
Inventor 王磊
Owner FORTINET
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap