Unlock instant, AI-driven research and patent intelligence for your innovation.

DHCP-based DNS server public key distribution mechanism

A DNS server and distribution mechanism technology, applied in the Internet field, can solve the problem of exposing users' personal privacy, and achieve the effect of eliminating complicated processes and avoiding the request process.

Active Publication Date: 2015-09-23
TSINGHUA UNIV
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the domain name information carried in the DNS message will expose the user's personal privacy

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • DHCP-based DNS server public key distribution mechanism

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] The implementation of the present invention will be described in detail below in conjunction with the drawings and examples.

[0037] exist figure 1 In the shown DHCP / DHCPv6 scenario, the encryption process includes the following steps:

[0038] 1. The administrator configures a unique pair of public and private keys for the local DNS server, namely Pu and Pr. The administrator configures the public key Pu of the DNS server on the DHCP server. The private key Pr of the DNS server is kept by the DNS server itself. The DHCP server stores the IP address of the DNS server and the public key Pu in the binding table maintained by itself.

[0039] 2. The DHCP server sends the IP address of the DNS server and the public key Pu corresponding to the DNS server to the user through a DHCP message.

[0040] 3. After receiving the DNS server IP address and DNS server public key assigned by the DHCP server, the user generates a unique symmetric key Ks, and establishes a DNS server I...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a DHCP-based DNS server public key distribution mechanism, and is applied to a DHCP and a DHCPv6 scene, for solving the problem of secrecy key distribution in a DNS message encryption process. The mechanism comprises a public key sending mode and a public key storage mode. By use of the public key distribution technology brought forward by the invention, a public key of a DNS server can be put into an option of a DHCP message and is distributed through DHCP service, and the public key can be distributed to a user when a DHCP configures an IP address to the user and can also be sent to the user when the user requests the DNS server to configure parameters.

Description

technical field [0001] The invention belongs to the technical field of the Internet, in particular to a DNS server public key distribution mechanism based on DHCP. Background technique [0002] DNS (Domain Name System, Domain Name System), which provides mapping from domain names to addresses, is one of the key services for users to access the Internet. Address query is performed between the user and the DNS server by sending DNS request and reply messages. However, the domain name information carried in the DNS message will expose the user's personal privacy. Therefore, in order to prevent an attacker from eavesdropping on the DNS message, it is necessary to encrypt the content of the DNS message. [0003] When a user sends a DNS request, the request message will be sent to the local DNS server first. The local DNS server first inquires the root domain name server, and then inquires down one level until the query result is returned to the user. When the local DNS server...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L29/12
CPCH04L63/062H04L61/5014H04L61/4511
Inventor 崔勇李天翔刘聪
Owner TSINGHUA UNIV