Certificate-based socks5 mutual authentication method, device and equipment
By introducing a certificate authentication method identifier into the SOCKS5 protocol, a two-way verification process is implemented where the client sends its user certificate first, and the server sends its certificate later. This solves the one-way authentication problem and leakage risk in the SOCKS5 protocol, and improves security and efficiency.
Patent Information
- Authority / Receiving Office
- CN · China
- Patent Type
- Applications(China)
- Current Assignee / Owner
- CBC TECH CO LTD
- Filing Date
- 2026-05-11
- Publication Date
- 2026-06-09
AI Technical Summary
The existing SOCKS5 protocol authentication method is one-way and based on a shared secret, which is easily leaked and cannot achieve two-way authentication, posing risks of man-in-the-middle attacks and data leakage.
By introducing a certificate authentication method identifier into the SOCKS5 protocol, the client first sends the user certificate for the server to verify. After the server verifies the certificate, it then sends the user certificate back, thus achieving strict two-way certificate exchange and verification and using public key infrastructure for strong identity verification.
It implements two-way strong authentication to prevent password leakage and man-in-the-middle attacks, reduces operational complexity, and improves connection security and efficiency, making it suitable for high-security environments.
Smart Images

Figure CN122179243A_ABST