Eureka AIR delivers breakthrough ideas for toughest innovation challenges, trusted by R&D personnel around the world.

DNSSEC (Domain Name System Security Extensions) signature method and system thereof

A node and master server technology, applied in the computer field, can solve problems such as redundant deployment of DNSSEC hardware, and achieve the effects of ensuring continuity and integrity, ensuring confidentiality, and preventing leakage

Active Publication Date: 2014-04-23
INTERNET DOMAIN NAME SYST BEIJING ENG RES CENT
View PDF4 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The present invention provides a DNSSEC signature method and its system, which can solve the problem of redundant deployment of DNSSEC hardware in the production environment, and ensure the continuity and integrity of DNSSEC data through dynamic monitoring and intelligent switching of primary and secondary servers

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • DNSSEC (Domain Name System Security Extensions) signature method and system thereof
  • DNSSEC (Domain Name System Security Extensions) signature method and system thereof
  • DNSSEC (Domain Name System Security Extensions) signature method and system thereof

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] In order to enable those skilled in the art to better understand the technical solutions of the present invention, the present invention will be further described in detail below in conjunction with the accompanying drawings and specific embodiments.

[0037] figure 1 A schematic flow diagram of the DNSSEC signature method provided in Embodiment 1 of the present invention, as shown in figure 1 As shown, the DNSSEC signature method adopts a primary server and a secondary server, the primary server includes: a first node, a key management module, and a second node; the secondary server includes: a first node, a key management module, and a second node; the method comprising:

[0038] Step S1, the user obtains an initial resource record from the zone file database, and sends the initial resource record to the first node in the master server.

[0039] Specifically, the user obtains resource records from the zone file database, and the resource records exist in the first n...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a DNSSEC signature method and a system of the method. The DNSSEC signature method comprises the following steps: a user obtains initial resource records from a zone file database and sends the initial resource records to a first node in a master server; the first node of the master server receives and issues the initial resource records to a key management module; the key management module communicates with a hardware encryption signature module through a first interface, performs encryption signature to the initial resource records in the hardware encryption module, and sends the encrypted and signed resource records to a second node; the second node sends the encrypted and signed resource records to each authoritative DNS (Domain Name Server); a recursive server inquires and verifies the encrypted and signed resource records; data information in the master server and a slave server is kept to be identical; when the service in the master server is unavailable, the service in the slave server is initiated; dynamic monitoring and intelligent switching between the master server and the slaver server are performed to ensure continuity and integrity of the DNSSEC data.

Description

technical field [0001] The invention belongs to the technical field of computers, and in particular relates to a DNSSEC signature method and a system thereof. Background technique [0002] The Domain Name System (DNS for short), like other protocols or systems on the Internet, works well in a trusted and pure environment. However, due to the extremely complex Internet environment, full of various frauds and attacks, the vulnerability of the DNS protocol has surfaced. Attacks on DNS may lead to a large-scale paralysis of the Internet. The biggest defect of DNS is that the requester cannot verify the authenticity of the response information it receives. [0003] The domain name system security protocol (DNS Security Extensions, referred to as DNSSEC) provides a weapon for the resolution server to prevent being deceived, that is, a mechanism that can verify the authenticity and integrity of the response information. Existing DNS services generally lack the DNSSEC function, an...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/32H04L9/08H04L29/12
Inventor 刘硕
Owner INTERNET DOMAIN NAME SYST BEIJING ENG RES CENT
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com