DNS end-to-end analysis method capable of ensuring safety and privacy

A parsing method, DNS query technology, applied in transmission systems, electrical components, etc., can solve problems such as security and privacy leakage, achieve high efficiency, improve TCP performance and transmission performance, and achieve simple results

Inactive Publication Date: 2016-02-24
BEIJING INTERNET INST +1
View PDF7 Cites 5 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In order to solve the security and privacy leakage problems that exist when the traditional DNS protocol transmits DNS mes

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • DNS end-to-end analysis method capable of ensuring safety and privacy
  • DNS end-to-end analysis method capable of ensuring safety and privacy
  • DNS end-to-end analysis method capable of ensuring safety and privacy

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0021] The embodiments will be described in detail below in conjunction with the accompanying drawings.

[0022] Such as figure 2 As shown, the present invention proposes to ensure security and privacy through the HTTP(S) protocol from the user to the recursive server; and to ensure data security through DNSSEC from the recursive server to the authoritative name server. Take a type A query of the domain name www.example.com as an example to illustrate the workflow of the DNS end-to-end resolution solution.

[0023] The client sends a query request of type A whose domain name is www.example.com to the address of 127.X.X.X. After the local client agent receives the DNS message, it establishes an HTTP or HTTPS connection with the agent of the recursive server. After the connection is established, the DNS message can be sent to the recursive server proxy in the form of binary code through HTTP(S) PUSH. If it is sent through the HTTP protocol, the port of the authoritative serv...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention belongs to the technical field of DNS security protection and especially relates to a DNS end-to-end analysis method capable of ensuring safety and privacy. The method comprises the following steps: a configuration file of a client operating system is configured with an address of a recursive server; a client sends a DNS query message to a local 127.X.X.X address, and a client proxy process receives the query message and establishes HTTP or HTTPS connection with a proxy of the recursive server; the client adopts a POST interaction mode to sent data to the recursive server, and the DNS message is sent to the proxy of the recursive server through the HTTP or HTTPS in the form of binary content; when a DNS response message IS received from the recursive server, the DNS response message is sent to the client by adopting the process opposite to the DNS query message; and when the cache of the recursive server does not have the DNS query message, the recursive server sends a DNS request to an authoritative server through DNSSEC.

Description

technical field [0001] The invention belongs to the technical field of DNS security protection, and in particular relates to a DNS end-to-end resolution method for ensuring safety and privacy. Background technique [0002] DNS provides important services for the Internet, and its essence is to establish a bridge between the world of human names and the world of underlying binary protocol addresses. The DNS resolution framework is a recursive resolver that uses the UDP protocol and is implemented by geographically distributed recursive resolvers. Its basic process is as figure 1 Shown: The user sends a domain name DNS request to the local ISP's recursive resolver (RecursiveResolver). If the local recursive server caches the DNS request entry, the recursive server directly returns a DNS corresponding message to the user. If the local recursive server does not cache the DNS request message, the local recursive server starts from the root server and recursively queries the re...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
CPCH04L61/4511
Inventor 宋林健刘东万润夏李震宋松余冬王爱民潘居臣龚道彪
Owner BEIJING INTERNET INST
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap