Unlock instant, AI-driven research and patent intelligence for your innovation.

A dns request processing method, device and system

A processing method and a domain name system technology are applied in the field of devices and systems, and a processing method for DNS requests, and can solve problems such as misidentification, consumption of DNS system resources, and missed identification of forged DNS requests.

Active Publication Date: 2018-08-24
张大顺
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0011] Embodiments of the present invention provide a DNS request processing method, device, and system, which are used to solve the possibility of counterfeiting DNS requests when DNS is attacked by DDoS according to the existing DNS security defense mechanism to prevent DNS from being attacked. Missing identification, misidentification, and problems that consume more system resources of DNS

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A dns request processing method, device and system
  • A dns request processing method, device and system
  • A dns request processing method, device and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0028] Through the analysis and research of the security defense mechanism in the prior art, the inventor finds that the TC flag specified in the DNS protocol has its specific function. The specific performance is: when there are too many DNS response packets (more than 512Byte) for a single DNS request, DNS will automatically truncate all DNS response packets, and set the TC flag to 1, so as to force the user terminal sending the single DNS request to initiate again Based on the DNS request of TCP53 (that is, the TCP request mentioned above), it is ensured that the user terminal can receive all DNS response messages corresponding to the single DNS request.

[0029]It can be seen from the above that the TC flag position 1 can be used as a trigger condition for triggering the user terminal to initiate a DNS request based on TCP53. It is based on this principle that the DNS security defense mechanism in the prior art uses the TC flag position 1 to trigger the user terminal to in...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention discloses a DNS request processing method, device and system, for solving the problems in the prior art, i.e., missing identification, false identification of fake DNS request, and more system resources of the DNS to be cost. The method includes: obtaining domain name information included in a domain name system DNS request; determining whether the domain name information matches credible domain name information included in a pre-obtained domain name information set; and if the determined result is negative, processing the DNS request including the domain name information according to a preset way for processing the fake DNS request.

Description

technical field [0001] The present invention relates to the technical field of communications, in particular to a DNS request processing method, device and system. Background technique [0002] Computer Domain Name System (Domain Name System or Domain Name Service, DNS) is composed of a resolver and a domain name server. A domain name server refers to a server that saves the domain names and corresponding IP addresses of all hosts in the network and has the function of converting domain names to IP addresses. The domain name must correspond to an IP address, but the IP address does not necessarily correspond to only one domain name. Although domain names are easy for people to remember, machines only recognize IP addresses. The conversion work between them is called domain name resolution. Domain name resolution needs to be completed by a dedicated domain name resolution server. DNS is the server for domain name resolution. When the user enters the domain name of the host ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/12
Inventor 张大顺
Owner 张大顺