公开(公告)号：US20250141841A1

公开(公告)日：2025-05-01

申请号：US18499887

申请日：2023-11-01

Applicant: Microsoft Technology Licensing, LLC

Inventor： Alexandru JERCAIANU ,  Thomas Alan JENSEN ,  Ivan D. PASHOV ,  Matthew Raymond COX

IPC: H04L9/40

Abstract: Examples of the present disclosure describe systems and methods for zero trust domain name system (DNS) (ZTDNS) based networking. A computing device implementing ZTDNS based networking blocks any outbound connections that are not included in a list of trusted IP addresses. The list of trusted IP addresses is updated in response to the computing device receiving from a trusted DNS server an IP address corresponding to a DNS request. In some examples, the ZTDNS based networking intercepts and evaluates outbound communications for applications that implement a custom application DNS client. In other examples, the ZTDNS based networking intercepts and evaluates outbound communications for virtual environments. The outbound communications for both the custom application DNS client and the virtual environments are proxied through a local DNS client of the computing device.