{"schema_version":"1.0","canonical_url":"https://patentable.app/patents/US-11516260","patent":{"patent_number":"US-11516260","title":"Selective policy-driven interception of encrypted network traffic utilizing a domain name service and a single-sign on service","assignee":null,"inventors":[],"filing_date":"2021-02-03T00:00:00.000Z","publication_date":"2022-11-29T00:00:00.000Z","cpc_codes":["H04L","H04L","H04L","H04L","H04L","H04L","H04L","H04L","H04L","H04L","H04L","H04L","H04L","H04W","H04W","H04W","H04L"],"num_claims":20,"abstract":"Techniques for utilizing an enterprise traffic interception service (TIS) to enforce policies that mandate how clients access software as a service (SaaS) offered by service providers and selectively intercept enterprise network traffic utilizing a domain name service (DNS) and a single sign-on (SSO) service on a per-client per-service basis. The TIS may include a DNS server, an identity provider service, a TLS inspecting proxy, and/or a policy server. The DNS server may handle requests to resolve an address of a service, and identify a policy, stored in the policy server, to redirect the client based on the identity of the client and the service. The identity provider service may later query the policy server during client authorization for the service to verify that the client request is in line with the policy and allow or deny access to the service."},"analysis":{"summary":null,"layman_explanation":null,"technical_analysis":null,"business_analysis":null,"faqs":null,"topics":[],"tech_cluster":null},"seo":{"title":"Selective policy-driven interception of encrypted network traffic utilizing a domain name service and a single-sign on service","description":"Techniques for utilizing an enterprise traffic interception service (TIS) to enforce policies that mandate how clients access software as a service (SaaS) offered by service providers and selectively ","keywords":[]},"attribution":{"source":"Patentable","source_url":"https://patentable.app","canonical_url":"https://patentable.app/patents/US-11516260","license":"CC-BY-4.0-like","license_terms":"AI-generated analysis on this page (summary, layman_explanation, technical_analysis, business_analysis, faqs) may be reused with attribution and a visible link back to the canonical URL above. Patent abstracts, claims, and bibliographic data are USPTO public domain.","required_link":"https://patentable.app/patents/US-11516260","citation_suggestion":"Patentable. \"Selective policy-driven interception of encrypted network traffic utilizing a domain name service and a single-sign on service\" (US-11516260). https://patentable.app/patents/US-11516260","copyright_holder":"Nomic Interactive Technology LLC"},"links":{"html":"https://patentable.app/patents/US-11516260","json":"https://patentable.app/api/llm-context/US-11516260","site":"https://patentable.app","llms_txt":"https://patentable.app/llms.txt"},"generated_at":"2026-05-31T11:54:11.316Z"}