US 12,192,237 B2
Detecting attacks using handshake requests systems and methods
Andrew Penner, Savoy, IL (US); and Tushar Kanekar, Fremont, CA (US)
Assigned to Citrix Systems, Inc., Fort Lauderdale, FL (US)
Filed by Citrix Systems, Inc., Fort Lauderdale, FL (US)
Filed on Apr. 21, 2021, as Appl. No. 17/236,233.
Application 17/236,233 is a continuation of application No. 16/207,423, filed on Dec. 3, 2018, granted, now 11,019,100.
Prior Publication US 2021/0243227 A1, Aug. 5, 2021
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); H04L 67/63 (2022.01)
CPC H04L 63/166 (2013.01) [H04L 63/0428 (2013.01); H04L 63/126 (2013.01); H04L 63/1416 (2013.01); H04L 63/1441 (2013.01); H04L 67/63 (2022.05)] 11 Claims
OG exemplary drawing
 
1. A method comprising:
receiving, by a computing device, a handshake request to establish a connection for an application request to access an application, wherein the connection is a transport layer security (TLS) connection;
identifying, by the computing device prior to one of rejecting or accepting the handshake request to establish the TLS connection for the application request, that the application request of the handshake request is stored in a registry, the registry storing application requests received from handshake requests across a plurality of computing devices, wherein the handshake request of the application request is different from the handshake requests that provided the application requests stored in the registry;
determining, by the computing device, prior to accepting the handshake request to establish the connection for the application request, to reject the application request of the handshake request responsive to identifying that the application request is stored in the registry; and
accepting the handshake request to establish the connection and rejecting the application request.