CPC H04L 9/083 (2013.01) [H04L 9/0891 (2013.01); H04L 9/0894 (2013.01); H04L 9/3263 (2013.01); H04L 43/04 (2013.01); H04L 63/166 (2013.01); H04L 63/18 (2013.01)] | 20 Claims |
1. A system for managing ephemeral keys, the system comprising:
an agent, comprising computer-executable instructions on an endpoint device or a server that, when executed by a processor, performs operations of:
passively collecting an ephemeral key in response to a transport layer security handshake;
a memory comprising a secure keystore configured to store the ephemeral key;
a network terminal access point (TAP) configured to capture a packet on a computer network; and
a key broker, comprising computer-executable instructions on a server that when executed by a processor performs the operations of:
receiving metadata corresponding to the captured packet;
retrieving the ephemeral key corresponding to the captured packet, from the secure keystore, based on the metadata;
providing the ephemeral key to a network monitoring device; and
removing the ephemeral key from the network monitoring device based on a decryption key storage limit of the network monitoring device and a priority of the ephemeral key.
|