CN102112979B - 安全资源名称解析 - Google Patents
安全资源名称解析 Download PDFInfo
- Publication number
- CN102112979B CN102112979B CN200980130777.7A CN200980130777A CN102112979B CN 102112979 B CN102112979 B CN 102112979B CN 200980130777 A CN200980130777 A CN 200980130777A CN 102112979 B CN102112979 B CN 102112979B
- Authority
- CN
- China
- Prior art keywords
- identifier
- group
- analytic parameter
- parameter
- name resolution
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F15/00—Digital computers in general; Data processing equipment in general
- G06F15/16—Combinations of two or more digital computers each having at least an arithmetic unit, a program unit and a register, e.g. for a simultaneous processing of several programs
- G06F15/163—Interprocessor communication
- G06F15/173—Interprocessor communication using an interconnection network, e.g. matrix, shuffle, pyramid, star, snowflake
- G06F15/17306—Intercommunication techniques
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
- H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Mathematical Physics (AREA)
- Software Systems (AREA)
- General Physics & Mathematics (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
Claims (15)
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US12/189,034 US7917616B2 (en) | 2008-08-08 | 2008-08-08 | Secure resource name resolution |
US12/189,034 | 2008-08-08 | ||
PCT/US2009/051143 WO2010017025A2 (en) | 2008-08-08 | 2009-07-20 | Secure resource name resolution |
Publications (2)
Publication Number | Publication Date |
---|---|
CN102112979A CN102112979A (zh) | 2011-06-29 |
CN102112979B true CN102112979B (zh) | 2015-05-27 |
Family
ID=41653931
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN200980130777.7A Active CN102112979B (zh) | 2008-08-08 | 2009-07-20 | 安全资源名称解析 |
Country Status (7)
Country | Link |
---|---|
US (3) | US7917616B2 (zh) |
EP (1) | EP2310951B1 (zh) |
JP (1) | JP5480265B2 (zh) |
CN (1) | CN102112979B (zh) |
HK (1) | HK1159282A1 (zh) |
TW (1) | TWI478564B (zh) |
WO (1) | WO2010017025A2 (zh) |
Families Citing this family (61)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8429715B2 (en) * | 2008-08-08 | 2013-04-23 | Microsoft Corporation | Secure resource name resolution using a cache |
US7917616B2 (en) * | 2008-08-08 | 2011-03-29 | Microsoft Corporation | Secure resource name resolution |
US8438304B2 (en) * | 2008-09-22 | 2013-05-07 | Oracle America, Inc. | Method and system for automatically generating software and configuring application installation |
EP2347561B1 (en) * | 2008-10-15 | 2018-02-21 | Nokia Technologies Oy | Determining a network interface to access a network |
US8527945B2 (en) * | 2009-05-07 | 2013-09-03 | Verisign, Inc. | Method and system for integrating multiple scripts |
US8347100B1 (en) | 2010-07-14 | 2013-01-01 | F5 Networks, Inc. | Methods for DNSSEC proxying and deployment amelioration and systems thereof |
CN102404416B (zh) * | 2010-09-16 | 2016-06-15 | 中兴通讯股份有限公司 | 一种获取dns的方法和隧道网关设备 |
US9106699B2 (en) * | 2010-11-04 | 2015-08-11 | F5 Networks, Inc. | Methods for handling requests between different resource record types and systems thereof |
US9313085B2 (en) | 2010-12-16 | 2016-04-12 | Microsoft Technology Licensing, Llc | DNS-based determining whether a device is inside a network |
US8949411B2 (en) | 2010-12-16 | 2015-02-03 | Microsoft Corporation | Determining whether a device is inside a network |
US9300637B1 (en) * | 2011-03-08 | 2016-03-29 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US9292696B1 (en) * | 2011-03-08 | 2016-03-22 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US9231920B1 (en) | 2011-12-13 | 2016-01-05 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US8726398B1 (en) | 2011-12-13 | 2014-05-13 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US8694646B1 (en) | 2011-03-08 | 2014-04-08 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US9413526B1 (en) | 2011-03-08 | 2016-08-09 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US9852311B1 (en) | 2011-03-08 | 2017-12-26 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US9722973B1 (en) * | 2011-03-08 | 2017-08-01 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US9667741B1 (en) | 2011-03-08 | 2017-05-30 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US9338220B1 (en) | 2011-03-08 | 2016-05-10 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US11228566B1 (en) | 2011-03-08 | 2022-01-18 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US9356993B1 (en) | 2011-03-08 | 2016-05-31 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US9432342B1 (en) | 2011-03-08 | 2016-08-30 | Ciphercloud, Inc. | System and method to anonymize data transmitted to a destination computing device |
US9049244B2 (en) * | 2011-04-19 | 2015-06-02 | Cloudflare, Inc. | Registering for internet-based proxy services |
US8990356B2 (en) | 2011-10-03 | 2015-03-24 | Verisign, Inc. | Adaptive name resolution |
US10270755B2 (en) | 2011-10-03 | 2019-04-23 | Verisign, Inc. | Authenticated name resolution |
JP5807912B2 (ja) * | 2011-12-12 | 2015-11-10 | 国立研究開発法人情報通信研究機構 | ホスト装置 |
US9843554B2 (en) | 2012-02-15 | 2017-12-12 | F5 Networks, Inc. | Methods for dynamic DNS implementation and systems thereof |
US9609017B1 (en) | 2012-02-20 | 2017-03-28 | F5 Networks, Inc. | Methods for preventing a distributed denial service attack and devices thereof |
GB2501757A (en) * | 2012-05-04 | 2013-11-06 | Ibm | Instrumentation of software applications for configuration thereof |
US9900281B2 (en) | 2014-04-14 | 2018-02-20 | Verisign, Inc. | Computer-implemented method, apparatus, and computer-readable medium for processing named entity queries using a cached functionality in a domain name system |
US11838851B1 (en) | 2014-07-15 | 2023-12-05 | F5, Inc. | Methods for managing L7 traffic classification and devices thereof |
US10182013B1 (en) | 2014-12-01 | 2019-01-15 | F5 Networks, Inc. | Methods for managing progressive image delivery and devices thereof |
CN104539603B (zh) * | 2014-12-22 | 2017-12-29 | 中国科学院计算机网络信息中心 | 基于本地解析的安全dns***和dns安全解析方法 |
CN104468865B (zh) * | 2014-12-25 | 2019-03-05 | 北京奇虎科技有限公司 | 域名解析控制、响应方法及相应的装置 |
US11895138B1 (en) | 2015-02-02 | 2024-02-06 | F5, Inc. | Methods for improving web scanner accuracy and devices thereof |
US9894041B2 (en) * | 2015-09-25 | 2018-02-13 | Microsoft Technology Licensing, Llc | Secure domain name resolution in computer networks |
US10791085B2 (en) | 2015-11-12 | 2020-09-29 | Verisign, Inc. | Techniques for directing a domain name service (DNS) resolution process |
CN105338187A (zh) * | 2015-11-16 | 2016-02-17 | 联想(北京)有限公司 | 一种信息处理方法及电子设备 |
CN105357212A (zh) * | 2015-11-23 | 2016-02-24 | 北京天地互连信息技术有限公司 | 一种保证安全和隐私的dns端到端解析方法 |
US10797888B1 (en) | 2016-01-20 | 2020-10-06 | F5 Networks, Inc. | Methods for secured SCEP enrollment for client devices and devices thereof |
US10708226B2 (en) * | 2016-01-29 | 2020-07-07 | Verisign, Inc. | Domain name resolution |
JP6861219B2 (ja) * | 2016-03-09 | 2021-04-21 | ダイナミック・ネットワーク・サービシーズ・インコーポレイテッドDynamic Network Services, Inc. | インテリジェントドメインネームシステム転送のための方法および装置 |
US10574674B2 (en) * | 2016-07-08 | 2020-02-25 | Nec Corporation | Host level detect mechanism for malicious DNS activities |
US10999240B1 (en) | 2016-08-31 | 2021-05-04 | Verisign, Inc. | Client controlled domain name service (DNS) resolution |
CN106357839B (zh) * | 2016-09-28 | 2019-11-19 | 中国互联网络信息中心 | 一种dns查询方法及装置 |
US11032127B2 (en) | 2017-06-26 | 2021-06-08 | Verisign, Inc. | Resilient domain name service (DNS) resolution when an authoritative name server is unavailable |
JP7112237B2 (ja) * | 2018-04-19 | 2022-08-03 | キヤノン株式会社 | デバイス、その制御方法、及びプログラム |
US10742595B2 (en) | 2018-04-20 | 2020-08-11 | Pulse Secure, Llc | Fully qualified domain name-based traffic control for virtual private network access control |
US11368440B2 (en) * | 2018-12-18 | 2022-06-21 | GM Global Technology Operations LLC | Detecting operation of an autonomous vehicle on an untrusted network |
US11477028B2 (en) | 2019-04-15 | 2022-10-18 | Pulse Secure, Llc | Preventing account lockout through request throttling |
US11743135B2 (en) | 2019-07-23 | 2023-08-29 | Vmware, Inc. | Presenting data regarding grouped flows |
US11340931B2 (en) | 2019-07-23 | 2022-05-24 | Vmware, Inc. | Recommendation generation based on selection of selectable elements of visual representation |
US11321213B2 (en) | 2020-01-16 | 2022-05-03 | Vmware, Inc. | Correlation key used to correlate flow and con text data |
JP2021162778A (ja) * | 2020-04-01 | 2021-10-11 | キヤノン株式会社 | 通信装置、通信装置の制御方法及びプログラム |
US11991187B2 (en) | 2021-01-22 | 2024-05-21 | VMware LLC | Security threat detection based on network flow analysis |
US11785032B2 (en) | 2021-01-22 | 2023-10-10 | Vmware, Inc. | Security threat detection based on network flow analysis |
US11997120B2 (en) | 2021-07-09 | 2024-05-28 | VMware LLC | Detecting threats to datacenter based on analysis of anomalous events |
US11831667B2 (en) | 2021-07-09 | 2023-11-28 | Vmware, Inc. | Identification of time-ordered sets of connections to identify threats to a datacenter |
US11792151B2 (en) * | 2021-10-21 | 2023-10-17 | Vmware, Inc. | Detection of threats based on responses to name resolution requests |
US12015591B2 (en) | 2021-12-06 | 2024-06-18 | VMware LLC | Reuse of groups in security policy |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6560634B1 (en) * | 1997-08-15 | 2003-05-06 | Verisign, Inc. | Method of determining unavailability of an internet domain name |
CN101087253A (zh) * | 2007-04-04 | 2007-12-12 | 华为技术有限公司 | 保存域名***记录的方法、装置、域名解析方法及装置 |
Family Cites Families (36)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP3484779B2 (ja) * | 1994-10-12 | 2004-01-06 | 富士ゼロックス株式会社 | 名前サービス方式及び名前サービス方法 |
US5878212A (en) * | 1995-07-31 | 1999-03-02 | At&T Corp. | System for updating mapping or virtual host names to layer-3 address when multimedia server changes its usage state to busy or not busy |
US5983270A (en) * | 1997-03-11 | 1999-11-09 | Sequel Technology Corporation | Method and apparatus for managing internetwork and intranetwork activity |
US6760746B1 (en) * | 1999-09-01 | 2004-07-06 | Eric Schneider | Method, product, and apparatus for processing a data request |
US6167446A (en) * | 1997-11-03 | 2000-12-26 | Inca Technology, Inc. | Automatically configuring network-name-services |
US7522931B2 (en) * | 1998-06-05 | 2009-04-21 | Netnumber, Inc. | Method and apparatus for accessing a network computer to establish a push-to-talk session |
US6826616B2 (en) * | 1998-10-30 | 2004-11-30 | Science Applications International Corp. | Method for establishing secure communication link between computers of virtual private network |
US6502135B1 (en) * | 1998-10-30 | 2002-12-31 | Science Applications International Corporation | Agile network protocol for secure communications with assured system availability |
US6338082B1 (en) * | 1999-03-22 | 2002-01-08 | Eric Schneider | Method, product, and apparatus for requesting a network resource |
US7031297B1 (en) * | 2000-06-15 | 2006-04-18 | Avaya Communication Israel Ltd. | Policy enforcement switching |
US7426566B2 (en) * | 2001-01-17 | 2008-09-16 | International Business Machines Corporation | Methods, systems and computer program products for security processing inbound communications in a cluster computing environment |
US7209479B2 (en) * | 2001-01-18 | 2007-04-24 | Science Application International Corp. | Third party VPN certification |
US7296155B1 (en) * | 2001-06-08 | 2007-11-13 | Cisco Technology, Inc. | Process and system providing internet protocol security without secure domain resolution |
US6961783B1 (en) | 2001-12-21 | 2005-11-01 | Networks Associates Technology, Inc. | DNS server access control system and method |
US8533282B2 (en) * | 2002-02-25 | 2013-09-10 | Broadcom Corporation | System, method and computer program product for selectively caching domain name system information on a network gateway |
JP3791464B2 (ja) * | 2002-06-07 | 2006-06-28 | ソニー株式会社 | アクセス権限管理システム、中継サーバ、および方法、並びにコンピュータ・プログラム |
US7734745B2 (en) * | 2002-10-24 | 2010-06-08 | International Business Machines Corporation | Method and apparatus for maintaining internet domain name data |
US7373500B2 (en) * | 2003-04-15 | 2008-05-13 | Sun Microsystems, Inc. | Secure network processing |
US7299491B2 (en) * | 2003-04-30 | 2007-11-20 | Microsoft Corporation | Authenticated domain name resolution |
TW200527870A (en) * | 2004-01-14 | 2005-08-16 | Nec Corp | Encrypted communication method, encrypted communication system, node device and program |
US7499998B2 (en) * | 2004-12-01 | 2009-03-03 | Cisco Technology, Inc. | Arrangement in a server for providing dynamic domain name system services for each received request |
US7594031B2 (en) * | 2005-09-15 | 2009-09-22 | Microsoft Corporation | Network address selection |
US7437755B2 (en) * | 2005-10-26 | 2008-10-14 | Cisco Technology, Inc. | Unified network and physical premises access control server |
US7356767B2 (en) * | 2005-10-27 | 2008-04-08 | International Business Machines Corporation | Extensible resource resolution framework |
EP1974522B1 (fr) * | 2005-12-27 | 2012-10-17 | France Telecom | Serveur, client et procédé pour gérer des requetes DNSSEC |
US8935416B2 (en) * | 2006-04-21 | 2015-01-13 | Fortinet, Inc. | Method, apparatus, signals and medium for enforcing compliance with a policy on a client computer |
DE602006003314D1 (de) * | 2006-05-11 | 2008-12-04 | Alcatel Lucent | Bearbeitung einer DNS-Dienstnachfrage |
EP1919155A1 (en) * | 2006-10-31 | 2008-05-07 | Alcatel Lucent | Resolution of flexible address schemes for IMS services |
FR2908540A1 (fr) | 2006-11-15 | 2008-05-16 | France Telecom | Deploiement de bases dnssec |
JP4535075B2 (ja) * | 2007-03-12 | 2010-09-01 | ブラザー工業株式会社 | ネットワーク装置、およびネットワーク装置用のプログラム |
US7734792B2 (en) * | 2007-07-25 | 2010-06-08 | Novell, Inc. | Secure tunnel domain name management |
US8935748B2 (en) * | 2007-10-31 | 2015-01-13 | Microsoft Corporation | Secure DNS query |
US8918865B2 (en) * | 2008-01-22 | 2014-12-23 | Wontok, Inc. | System and method for protecting data accessed through a network connection |
US7970004B2 (en) * | 2008-02-01 | 2011-06-28 | Nokia Corporation | Method and system for providing multicast contention resolution |
US7917616B2 (en) | 2008-08-08 | 2011-03-29 | Microsoft Corporation | Secure resource name resolution |
US8429715B2 (en) * | 2008-08-08 | 2013-04-23 | Microsoft Corporation | Secure resource name resolution using a cache |
-
2008
- 2008-08-08 US US12/189,034 patent/US7917616B2/en active Active
-
2009
- 2009-07-20 WO PCT/US2009/051143 patent/WO2010017025A2/en active Application Filing
- 2009-07-20 EP EP09805343.2A patent/EP2310951B1/en active Active
- 2009-07-20 JP JP2011522101A patent/JP5480265B2/ja active Active
- 2009-07-20 CN CN200980130777.7A patent/CN102112979B/zh active Active
- 2009-08-06 TW TW098126576A patent/TWI478564B/zh not_active IP Right Cessation
-
2010
- 2010-12-27 US US12/979,202 patent/US8332487B2/en active Active
-
2011
- 2011-12-16 HK HK11113625.3A patent/HK1159282A1/zh unknown
-
2012
- 2012-11-20 US US13/682,238 patent/US8762554B2/en active Active
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6560634B1 (en) * | 1997-08-15 | 2003-05-06 | Verisign, Inc. | Method of determining unavailability of an internet domain name |
CN101087253A (zh) * | 2007-04-04 | 2007-12-12 | 华为技术有限公司 | 保存域名***记录的方法、装置、域名解析方法及装置 |
Also Published As
Publication number | Publication date |
---|---|
EP2310951A2 (en) | 2011-04-20 |
WO2010017025A2 (en) | 2010-02-11 |
JP5480265B2 (ja) | 2014-04-23 |
TWI478564B (zh) | 2015-03-21 |
HK1159282A1 (zh) | 2012-07-27 |
EP2310951B1 (en) | 2015-03-04 |
US20100036959A1 (en) | 2010-02-11 |
WO2010017025A3 (en) | 2010-04-01 |
JP2011530868A (ja) | 2011-12-22 |
US7917616B2 (en) | 2011-03-29 |
US8762554B2 (en) | 2014-06-24 |
TW201012156A (en) | 2010-03-16 |
EP2310951A4 (en) | 2013-03-13 |
US20130080649A1 (en) | 2013-03-28 |
US20110162039A1 (en) | 2011-06-30 |
CN102112979A (zh) | 2011-06-29 |
US8332487B2 (en) | 2012-12-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN102112979B (zh) | 安全资源名称解析 | |
CN102112980B (zh) | 使用高速缓存的安全资源名称解析 | |
US8848923B2 (en) | Key distribution scheme for networks of information | |
US20090157574A1 (en) | Method and apparatus for analyzing web server log by intrusion detection system | |
CN102594823A (zh) | 一种远程安全访问智能家居的可信*** | |
ITTO20070853A1 (it) | Metodo di autenticazione per utenti appartenenti ad organizzazioni diverse senza duplicazione delle credenziali | |
CN103095861A (zh) | 确定设备是否处于网络内部 | |
CN112437100A (zh) | 漏洞扫描方法及相关设备 | |
Niemann | IT security extensions for PROFINET | |
Zegzhda et al. | Actual vulnerabilities of industrial automation protocols of an open platform communications series | |
Jensen et al. | Access Control with RFID in the Internet of Things | |
Varakliotis et al. | The use of Handle to aid IoT security | |
KR102085695B1 (ko) | 블록체인 네트워크를 이용한 데이터 서비스 제공 장치 및 방법 | |
Kirstein et al. | Handling the internet of things with care | |
Patnaik et al. | Internet of Things-Based Security Model and Solutions for Educational Systems | |
Chetioui et al. | Encryption of Query in DNS Message | |
Piironen | Preliminary Lansweeper integration testing for IT & OT asset management | |
Hardaker | Requirements for Management of Name Servers for the DNS | |
Yi | Evaluation and Implementation of a Secure Zero Configuration IoT System | |
Gupta et al. | Media access control (mac) | |
KR20200127330A (ko) | 일회용 비밀번호를 이용한 뉴스정보 관리시스템 | |
CHENARU | GATEWAY FOR SECURE IIoT INTEGRATION IN INDUSTRIAL CONTROL APPLICATIONS |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1159282 Country of ref document: HK |
|
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
ASS | Succession or assignment of patent right |
Owner name: MICROSOFT TECHNOLOGY LICENSING LLC Free format text: FORMER OWNER: MICROSOFT CORP. Effective date: 20150727 |
|
C41 | Transfer of patent application or patent right or utility model | ||
TR01 | Transfer of patent right |
Effective date of registration: 20150727 Address after: Washington State Patentee after: Micro soft technique license Co., Ltd Address before: Washington State Patentee before: Microsoft Corp. |
|
REG | Reference to a national code |
Ref country code: HK Ref legal event code: GR Ref document number: 1159282 Country of ref document: HK |