| CPC H04L 9/3265 (2013.01) [G06F 16/9562 (2019.01); G06F 18/214 (2023.01); H04L 9/0827 (2013.01); H04L 9/3268 (2013.01); H04L 67/02 (2013.01); H04L 67/146 (2013.01)] | 20 Claims |
|
1. A computer-implemented system, comprising:
a server of a host computing system having at least one processor; and
memory including instructions that, when executed by the at least one processor, cause the system to:
acquire, by the server, a set of digital certificates, each of the digital certificates associated with a root certificate authority of a plurality of root certificate authorities;
receive, by the server, a handshake request from a client electronic device to establish a secure Hypertext Transfer Protocol Secure (“HTTPS”) network connection, with the host computing system, using the Transport Layer Security (“TLS”) protocol, the request seeking a favicon associated with a website of the host computing system;
transmit, by the server to the client electronic device, a first digital certificate, the first digital certificate included in the set of digital certificates and associated with a first root certificate authority randomly selected from among the plurality of root certificate authorities;
determine, by the server based at least in part on a failure of the request, that the first root certificate authority is not represented in a client trust store;
update, by the server and based on the failure of the request, a root certificate log;
transmit, by the server to the client electronic device, a second digital certificate, the second digital certificate included in the set of digital certificates and associated with a second root certificate authority randomly selected from among the plurality of root certificate authorities;
determine, by the server based at least in part on a success of the request, that the second root certificate authority is represented in the client trust store; and
update, by the server and based on the success of the request, the root certificate log.
|