IP recognition method and system for domain name authority service source

An authoritative server and source technology, applied in the field of computer networks, can solve the problem of inability to realize the fine classification of authoritative service source IP, and achieve the effect of simple and flexible selection of feature extraction rules.

Active Publication Date: 2016-06-22
CHINA INTERNET NETWORK INFORMATION CENTER
View PDF4 Cites 11 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Since the top-level domain name authoritative service objects include multiple types and different characteristics, neither of the above two source IP identification technologies can achieve fine classification of authoritative service source IP

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • IP recognition method and system for domain name authority service source
  • IP recognition method and system for domain name authority service source
  • IP recognition method and system for domain name authority service source

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0047] The domain name authoritative service source IP identification system of the present invention needs to build three modules: a query record feature statistics module, a recursive structure feature statistics module, and a source IP clustering identification module. Examples of specific implementation methods are as follows:

[0048] Query record feature statistics module

[0049] Taking the CN national authoritative domain name service as an example, the query record feature statistics module extracts a day's query logs for statistical analysis. Among them, the query volume, the number of domain names, query ratio and other characteristics can be obtained through simple group statistics. Only the entropy value characteristics of the source IP need to be subjected to secondary statistical extraction. The specific calculation method is as follows:

[0050] (1) Calculate the entropy value of the domain name according to the source IP distribution corresponding to each dom...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an IP recognition method and system for a domain name authority service source. The method comprises the steps: 1), a query record feature statistic module extracts the query record features of set source IPs from an authority query log of an authority server; 2), a recursion structure feature statistic module builds a recursion structure mapping relation table according to the read global recursion service detection data, and then carries out recursion structure feature extraction according to the recursion structure mapping relation table; 3), a source IP cluster recognition module carries out the clustering of the set source IPs according to the extracted query record features and the recursion structure features, dividing the source IPs into a plurality of different subsets, and sets a response strategy for each subset; 4), the authority judges which subset the IP corresponding to the query belongs to when the authority server receives the query, and then carries out the processing of the IP corresponding to the query according to the response strategy corresponding to the subset. The method can achieve the fine recognition of different types of source IPs, and carries out the corresponding processing of the IPs.

Description

technical field [0001] The invention relates to a domain name authoritative service source IP identification method and system, belonging to the technical field of computer networks. Background technique [0002] As a key link of DNS service, domain name authoritative service is responsible for providing RR records mapping between domain names and IP addresses, which is the basis for the normal operation of most Internet services. The efficient operation of domain name authority is a key factor to ensure the stable operation of domain name services and even basic Internet services. [0003] There may be multiple types of domain name authoritative service source IP. For example, from operator recursive servers, Internet open recursive servers, search engine services, e-mail services, cloud services, network detection services, and so on. When the authoritative server suffers from a denial of service attack, indiscriminate verification against the source IP may cause misjudg...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/12
CPCH04L61/4511
Inventor 李晓东潘蓝兰尉迟学彪陈勇
Owner CHINA INTERNET NETWORK INFORMATION CENTER
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap