A method and device for verifying dns area data

A technology of data verification and DNS server, applied in the field of data processing, can solve problems such as inability to ensure the consistency of zone data, hidden dangers of DNS node zone data security, and domain name data security threats.

Active Publication Date: 2021-05-11
CHINA INTERNET NETWORK INFORMATION CENTER
View PDF8 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] However, the inventor found through research that the zone data consistency verification mechanism has not been introduced into DNS at this stage, and attackers can use technical means to tamper with the data in unsigned DNS messages and destroy important domain name data; resulting in DNS There is a security risk in the zone data managed by the node
That is to say, at present, DNS cannot ensure the consistency of zone data in a multi-level distributed system, which poses a huge threat to the security of domain name data

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and device for verifying dns area data
  • A method and device for verifying dns area data
  • A method and device for verifying dns area data

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0046]In order to enable those skilled in the art to better understand the solution of the present application, the technical solution in the embodiment of the application will be clearly and completely described below in conjunction with the accompanying drawings in the embodiment of the application. Obviously, the described embodiment is only It is a part of the embodiments of this application, not all of them. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the scope of protection of this application.

[0047] At this stage, DNS manages a large number of generic top-level domains (English: generic top-level domains, abbreviated: gTLDs) and country and regional top-level domains (English: country code top-level domains, abbreviated: ccTLDs), and the amount of New gTLD data is also Due to the complex and changeable network environment, it is particularly important to...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present application discloses a method and device for verifying DNS zone data. The method includes: obtaining the latest update corresponding to the latest serial number from the latest update transaction of the incremental data file after the secondary DNS server completes the incremental update each time. The digital fingerprint of the transaction is the first verification digital fingerprint; the digital fingerprint of the kth updated transaction is pre-generated based on the resource record query hash value of the 1st to k updated transactions in the local area file and the incremental data file using the digital fingerprint encoding algorithm And stored; Obtain the digital fingerprint corresponding to the latest serial number from the zone file of the primary DNS server as the first standard digital fingerprint; if the first verification digital fingerprint is inconsistent with the first standard digital fingerprint, determine the DNS zone data of the secondary DNS server abnormal. It can be seen that the digital fingerprint technology is applied to the data verification of the DNS area, and the data consistency verification method of the DNS area is established to timely discover the security risks of the inconsistency of the DNS area data.

Description

technical field [0001] The present application relates to the technical field of data processing, in particular to a method and device for verifying DNS zone data. Background technique [0002] With the rapid development of computer science and technology, Internet services have gradually penetrated into various fields of society, and their applications in various fields have become more and more extensive. The number of global Internet domain names is very large and increasing day by day, among which, the data volume of traditional top-level domain names has reached tens of millions or hundreds of millions. With the continuous promotion of new top-level domains (English: new generic top-level domains, abbreviation: New gTLD) , and its data volume is also growing rapidly. [0003] Facing today's extremely complex and changeable network environment, the Domain Name System (English: Domain Name System, abbreviation: DNS) is a management and analysis system for global Internet...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/12G06F21/16
CPCH04L63/14G06F21/16H04L61/4511
Inventor 叶崛宇贺明张海阔岳巧丽闫夏莉
Owner CHINA INTERNET NETWORK INFORMATION CENTER
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap