20250175460. Mechanism Enforc (Amazon Technologies, .)
MECHANISM FOR ENFORCING ACCESS CONTROL AT SCALE TO AN INTERNET SERVICE USING TRANSPORT LAYER SECURITY (TLS)
Abstract: systems and methods are provided for a scalable load balancer to enable client certificate access control using mutual transport layer security authentication comprising hardware configured to receive trust store files including a certificate authority (ca) bundle and a certificate revocation list (crl), generate a single trust store file based on the trust store files, distribute a snapshot of the single trust store file to one or more nodes of the scalable load balancer, verify, using the snapshot, a client certificate from a client device by searching for a trusted ca from the ca bundle in the snapshot, determine whether the crl contained in the snapshot includes the client certificate, and upon verifying the client certificate and determining that the crl does not contain the client certificate, transmit connection data from the client device to an application target.
Inventor(s): Sathyaprasad Srivatsa Ramaseshan, Hyunsoo Choe, Dhruva Gaidhani, Ajit Domaji Rajurkar, Shuai Wang, Srikant Iyengar, Sanket Mohanbhai Patel, Zhiye Zhang
CPC Classification: H04L63/0823 ({using certificates (cryptographic mechanisms or cryptographic arrangements for entity authentication involving certificates )})
Search for rejections for patent application number 20250175460
- Patent Applications
- Amazon Technologies, Inc.
- CPC H04L63/0823
- Sathyaprasad Srivatsa Ramaseshan of Issaquah WA US
- Hyunsoo Choe of Kirkland WA US
- Dhruva Gaidhani of Seattle WA US
- Ajit Domaji Rajurkar of Seattle WA US
- Shuai Wang of Bellevue WA US
- Srikant Iyengar of Sunnyvale CA US
- Sanket Mohanbhai Patel of Sunnyvale CA US
- Zhiye Zhang of Seattle WA US