Invention Grant
US09544278B2 Using domain name system security extensions in a mixed-mode environment
有权
在混合模式环境中使用域名系统安全扩展
- Patent Title: Using domain name system security extensions in a mixed-mode environment
- Patent Title (中): 在混合模式环境中使用域名系统安全扩展
-
Application No.: US14591121Application Date: 2015-01-07
-
Publication No.: US09544278B2Publication Date: 2017-01-10
- Inventor: Tomas Hozza , Petr Spacek , Miloslav Trmac , Prasad J. Pandit , Pavel Simerda , Florian Weimer
- Applicant: Red Hat, Inc.
- Applicant Address: US NC Raleigh
- Assignee: Red Hat, Inc.
- Current Assignee: Red Hat, Inc.
- Current Assignee Address: US NC Raleigh
- Agency: Lowenstein Sandler LLP
- Main IPC: G06F7/04
- IPC: G06F7/04 ; H04L29/06 ; H04L29/12
Abstract:
A method relates to generating, by a processing device executing a DNS resolver, a first domain name system (DNS) query comprising a DNS request generated from an application executing on the processing device to query a first DNS server serving a first DNS zone connected to the processing device via a public network, receiving, from the first DNS server, a first resource record comprising a DNS answer to the DNS query, a second resource record comprising a digital signature generated by signing the DNS answer with a first private key of the first DNS zone, a third resource record comprising a first public key for verifying the digital signature, and one or more files for validating a chain of trust of the first public key, determining, by the processing device in view of the one or more files, that the chain of trust of the first public key misses at least one of a trust anchor or a link in the chain of trust, and generating a second DNS query comprising the DNS request to query a second DNS server residing in a private network of the processing device.
Public/Granted literature
- US20160197898A1 Using Domain Name System Security Extensions In A Mixed-Mode Environment Public/Granted day:2016-07-07
Information query
