| CPC H04L 63/0838 (2013.01) [H04L 63/0435 (2013.01); H04L 63/1416 (2013.01); H04L 63/16 (2013.01); H04L 63/20 (2013.01)] | 21 Claims |
|
1. A method comprising:
receiving a secret from a threat management facility at an endpoint, wherein the secret is further transmitted by the threat management facility to a remote resource coupled in a secure communicating relationship with the threat management facility;
generating a password with a local security agent executing on the endpoint;
transmitting a message including the password from the endpoint to the remote resource to initiate a handshake for a secure communication channel between the endpoint and the remote resource, wherein the password included in the message to the remote resource is based on the secret securely received from the threat management facility;
if a reply is received from the remote resource including a certificate for the remote resource, authenticating the certificate; and
in response to authenticating the certificate, creating a session key based on the password for symmetric encryption of the secure communication channel between the endpoint and the remote resource.
|