Query request service method for DNS (Domain Name System) recursive server

A recursive server and query request technology, applied in the field of computer networks, can solve problems such as cache poisoning, achieve the effect of ensuring efficiency and reducing the possibility of poisoning

Active Publication Date: 2014-03-26
CHINA INTERNET NETWORK INFORMATION CENTER
View PDF9 Cites 14 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] In the above query process, after the recursive server sends a query message to any authoritative server, if the corresponding forged response data packet can be received by the recursive server before the correct response data packet arrives, and matches the query data packet sent by the recursive server UDP port number and packet ID, the recursive server will cache the wrong authoritative resource records, resulting in cache poisoning

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Query request service method for DNS (Domain Name System) recursive server
  • Query request service method for DNS (Domain Name System) recursive server

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0028] The processing flow of the recursive server in the present invention is as follows figure 2 shown.

[0029] 1) After the recursive server receives a query request, it first searches for matching resources in the resource records of the trusted cache; the recursive server first hopes to return the matching response to the user as soon as possible through the query of the trusted cache, thereby improving query efficiency (If no attack is found, all query results will be saved in the trusted cache, such as figure 1 In the example, the authoritative server address of com, the authoritative server address of sina.com, and the address of www.sina.com. When an attack is detected, the received response information is stored in the untrusted zone. ); if not, a query request is initiated to the authoritative server. When the arrival rate of the response packet corresponding to the query request exceeds the preset threshold, it is considered that the cache is suffering from a p...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a query request service method for a DNS (Domain Name System) recursive server, and belongs to the technical field of networks. The method comprises the following steps: 1) dividing cache of the DNS recursive server into a credible cache area and an incredible cache area; 2) looking up whether matched resources exist in a resource record of the credible cache area after the recursive server receives a query request; if yes, returning the matched resource record to a query terminal, and if not, sending a query request to an authorized server; 3) monitoring the responded data package arrival rate of the query request by the recursive server; 4) putting the responded data package of the query request in the incredible cache area by the recursive server if the responded data package arrival rate exceeds a credible threshold; sending a query request again to the authorized server if the responded data package arrival rate does not exceed the credible threshold, sending the obtained DNS resource record to the query terminal, and adding into the credible cache area. According to the invention, the possibility of caching poisoning is reduced, and the efficiency of query is ensured.

Description

technical field [0001] The invention relates to a query request service method of a DNS recursive server, belonging to the technical field of computer networks. Background technique [0002] The main entities of the Internet Domain Name System (Domain Name System, DNS) include recursive servers that provide resolution query services and authoritative servers that provide authoritative answer services. Its query process is as follows figure 1 shown. The specific steps are: [0003] 1) When the end user wishes to visit www.sina.com, send a DNS query request message to the recursive server; [0004] 2) If there is no relevant information about the domain name in the cache of the recursive server (assuming that there is neither the authoritative server address of com nor the authoritative server address of sina.com), the recursive server needs to initiate a query process to the root server to learn that com the address of the authoritative server; [0005] 3) The recursive ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/12G06F17/30
Inventor 延志伟胡安磊王利明
Owner CHINA INTERNET NETWORK INFORMATION CENTER
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap