| CPC H04L 63/0478 (2013.01) [H04L 9/0618 (2013.01); H04L 9/0891 (2013.01); H04L 63/029 (2013.01); H04L 63/0281 (2013.01)] | 20 Claims |
|
1. A method comprising:
receiving, from a client device, over a computer network, at a proxy server, a request for a secret;
in response to receiving the request, the proxy server:
causing a tunnel to be created with a resource server that is separate from the client device;
retrieving the secret from a secrets repository,
causing the secret to be transmitted through the tunnel to the resource server;
after causing the secret to be transmitted through the tunnel to the resource server, sending, to the client device, tunnel data about the tunnel to allow the client device to communicate with the resource server through a second tunnel that is based on the tunnel data;
prior to sending the tunnel data to the client device, performing a rekeying operation with the resource server, wherein the rekeying operation updates a portion of the tunnel data;
wherein sending the tunnel data to the client device comprises sending the portion, of the tunnel data, that was updated;
wherein the method is performed by one or more computing devices.
|