CN109246256A - Domain name analytic method and system, credit domain name system server - Google Patents
Domain name analytic method and system, credit domain name system server Download PDFInfo
- Publication number
- CN109246256A CN109246256A CN201710554186.9A CN201710554186A CN109246256A CN 109246256 A CN109246256 A CN 109246256A CN 201710554186 A CN201710554186 A CN 201710554186A CN 109246256 A CN109246256 A CN 109246256A
- Authority
- CN
- China
- Prior art keywords
- domain name
- server
- credit
- target
- record
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/45—Network directories; Name-to-address mapping
- H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
- H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/101—Access control lists [ACL]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer And Data Communications (AREA)
Abstract
The present invention discloses a kind of domain name analytic method and system, credit domain name system server.The domain name analytic method includes: the domain name mapping request initiated in response to client computer, and domain name analysis request is drawn to credit domain name system DNS server;Credit dns server judges whether the target domain name server address belongs to scheduled name server white list;If the target domain name server address is not belonging to scheduled name server white list, credit dns server sends domain name analysis request to the target name server;The benchmark domain name mapping record of the domain name mapping record that the target name server returns and credit dns server self maintained is compared verification by credit dns server;Credit dns server forms final parsing result according to check results and returns to client computer.The present invention can take into account the efficiency and real result of domain name mapping by verifying to the possible problematic parsing result in part.
Description
Technical field
The present invention relates to domain name mapping field in data communication, in particular to a kind of domain name analytic method and system, credit
Domain name system server.
Background technique
When user initiates a certain network access request using website domain name, can by DNS (Domain Name System,
Domain name system) it translates domain names into as corresponding IP address, to establish network connection.
In the environment of existing network, especially public network opposing open, some unique people can be routed using broadband
The defect of device distorts User DN S, to destroy the authenticity of DNS name resolution result, user is caused to be disturbed by advertisement
It disturbs, or even is swindled by fishing website.
However, existing domain name mapping not can solve the above problem.For example, a kind of existing domain name mapping generation
Reason method is to translate domain names into request while being forwarded to multiple servers, parses respectively, then judges whether parsing result has friendship
Collection, to discover whether that there are Domain Hijackings and DNS cache area to pollute;Server used in the program may inherently be held as a hostage or
It is insincere, so the result and unreliable of judgement, and its needed in more dns resolutions and obtain parsing result during it is more
Data interaction and judgement, increase network load, may influence resolution speed.
As it can be seen that the DNS of user is easily distorted very much at present in domain name mapping technology, domain name resolution service it is with a low credibility, and lack
Weary effective result is judged and network supervision mechanism.
Summary of the invention
In view of the above technical problem, the present invention provides a kind of domain name analytic methods and system, credit domain name system services
Device can find and record in time the parsing data that authenticity leaves a question open.
According to an aspect of the present invention, a kind of domain name analytic method is provided, comprising:
In response to the domain name mapping request that client computer is initiated, domain name analysis request is drawn to credit domain name system
Dns server, wherein include target domain name server address in domain name analysis request, target name server is client
The name server that machine requests access to;
Credit dns server judges whether the target domain name server address belongs to the white name of scheduled name server
It is single;
If the target domain name server address is not belonging to scheduled name server white list, credit dns server
Domain name analysis request is sent to the target name server;
The domain name mapping record and credit dns server that credit dns server returns to the target name server are certainly
The benchmark domain name mapping record of body maintenance compares verification;
Credit dns server forms final parsing result according to check results and returns to client computer.
In one embodiment of the invention, the domain that the credit dns server returns to the target name server
Name solution new record and the benchmark domain name mapping record of credit dns server self maintained compare verification and include:
Credit dns server sends domain name analysis request to authorization server by recursion server;
Credit dns server receives the benchmark domain name mapping record that authorization server returns;
Domain name mapping record and the benchmark domain name mapping that credit dns server returns to the target name server
Record compares verification.
In one embodiment of the invention, the credit dns server forms final parsing result according to check results
And it returns to client computer and includes:
If the domain name mapping record that the target name server returns is consistent with benchmark domain name mapping record, school
It tests and passes through, benchmark domain name mapping record is returned into client computer.
In one embodiment of the invention, the credit dns server forms final parsing result according to check results
And it returns to client computer and includes:
If the domain name mapping record that the target name server returns recorded with the benchmark domain name mapping it is inconsistent,
Verification does not pass through;
In the case where verifying unacceptable situation, the target name server is corrected according to benchmark domain name mapping record and is returned
The domain name mapping record returned, then revised domain name mapping is recorded and returns to client computer;
And/or
The domain name mapping record returned in the case where verifying unacceptable situation to target name server and the benchmark domain name
Solution new record is recorded, and more parts of records are collected as a database.
In one embodiment of the invention, the method also includes:
If the target domain name server address belongs to scheduled name server white list, directly by domain name solution
Analysis request is transmitted to the target name server, obtains domain name mapping knot so that target name server carries out domain name mapping
Fruit, and domain name parsing result is returned into client computer.
According to another aspect of the present invention, a kind of credit domain name system server is provided, comprising:
Request receiving module, the domain name mapping request come for receiving route device traction, wherein route device is by client
The domain name mapping request that machine is initiated is drawn to credit domain name system server, includes that target domain name takes in domain name analysis request
Business device address, target name server are the name server of client requests access;
Address judgment module, for judging it is white whether the target domain name server address belongs to scheduled name server
List;
First request forwarding module, it is pre- for determining that the target domain name server address is not belonging in address judgment module
In the case where fixed name server white list, domain name analysis request is sent to the target name server;
Correction verification module is compared, domain name mapping record and credit DNS service for returning to the target name server
The benchmark domain name mapping record of device self maintained compares verification;
Parsing result determining module, for forming final parsing result according to check results and returning to client computer.
In one embodiment of the invention, the credit domain name system server further include:
Second request forwarding module, it is pre- for determining that the target domain name server address is not belonging in address judgment module
In the case where fixed name server white list, domain name analysis request is sent to authorization server by recursion server;
Reference recording receiving module, for receiving the benchmark domain name mapping record of authorization server return;
The domain name mapping record and the benchmark domain name that comparison correction verification module is used to return to the target name server
Solution new record compares verification.
In one embodiment of the invention, parsing result determining module is used to determine the target in comparison correction verification module
In the case that the domain name mapping record and benchmark domain name mapping record that name server returns are consistent, verification passes through, by institute
It states benchmark domain name mapping record and returns to client computer.
In one embodiment of the invention, parsing result determining module is used to return in the target name server
Domain name mapping record records in inconsistent, the unacceptable situation of verification with the benchmark domain name mapping, according to the benchmark domain name
Solution new record corrects the domain name mapping record that the target name server returns, then revised domain name mapping is recorded and is returned
Client computer;And/or the domain name mapping that target name server returns is recorded and is remembered with the benchmark domain name mapping
Record, and more parts of records are collected as a database.
In one embodiment of the invention, the credit domain name system server further include:
Third requests forwarding module, pre- for determining that the target domain name server address is not belonging in address judgment module
In the case where fixed name server white list, domain name analysis request is directly transmitted to the target name server,
Domain name mapping is obtained as a result, and domain name parsing result is returned to client so that target name server carries out domain name mapping
Machine.
According to another aspect of the present invention, a kind of domain name analysis system, including target name server, route device are provided
And the credit domain name system server as described in above-mentioned any embodiment.
In one embodiment of the invention, domain name resolution system further include:
Recursion server, it is pre- for determining that the target domain name server address is not belonging in credit domain name system server
In the case where fixed name server white list, domain name analysis request is sent to authorization server;
Authorization server is returned for parsing to domain name analysis request, and to credit domain name system server
Benchmark domain name mapping record.
The present invention by increasing a credit DNS node (server) in common domain name mapping data link, and
The possible problematic parsing result in part is verified, the efficiency and real result of domain name mapping can be taken into account.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below
There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this
Some embodiments of invention for those of ordinary skill in the art without creative efforts, can be with
It obtains other drawings based on these drawings.
Fig. 1 is the schematic diagram of domain name analysis system first embodiment of the present invention.
Fig. 2 is the schematic diagram of domain name analytic method first embodiment of the present invention.
Fig. 3 is the schematic diagram of domain name analytic method second embodiment of the present invention.
Fig. 4 is the schematic diagram of domain name analysis system second embodiment of the present invention.
Fig. 5 is the schematic diagram of credit domain name system server first embodiment of the present invention.
Fig. 6 is the schematic diagram of credit domain name system server second embodiment of the present invention.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete
Site preparation description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.Below
Description only actually at least one exemplary embodiment be it is illustrative, never as to the present invention and its application or make
Any restrictions.Based on the embodiments of the present invention, those of ordinary skill in the art are not making creative work premise
Under every other embodiment obtained, shall fall within the protection scope of the present invention.
Unless specifically stated otherwise, positioned opposite, the digital table of the component and step that otherwise illustrate in these embodiments
It is not limited the scope of the invention up to formula and numerical value.
Simultaneously, it should be appreciated that for ease of description, the size of various pieces shown in attached drawing is not according to reality
Proportionate relationship draw.
Technology, method and apparatus known to person of ordinary skill in the relevant may be not discussed in detail, but suitable
In the case of, the technology, method and apparatus should be considered as authorizing part of specification.
It is shown here and discuss all examples in, any occurrence should be construed as merely illustratively, without
It is as limitation.Therefore, the other examples of exemplary embodiment can have different values.
It should also be noted that similar label and letter indicate similar terms in following attached drawing, therefore, once a certain Xiang Yi
It is defined in a attached drawing, then in subsequent attached drawing does not need that it is further discussed.
Fig. 1 is the schematic diagram of domain name analysis system first embodiment of the present invention.As shown in Figure 1, domain name resolution system
Including credit domain name system (DNS) server 100, route device 200 and target name server 300, in which:
Client computer 400, for initiating domain name analysis request, wherein include that target domain name takes in domain name analysis request
Business device address, target name server 300 are the name server of client requests access.
Route device 200, for being drawn request to credit dns server 100 using policybased routing.
Credit dns server 100, for judging whether the target domain name server address belongs to scheduled domain name service
Device white list;If the target domain name server address is not belonging to scheduled name server white list, credit dns server
Domain name analysis request is sent to the target name server 300;The domain name solution that the target name server is returned
The benchmark domain name mapping record of new record and credit dns server self maintained compares verification;And according to check results shape
At final parsing result and return to client computer.
In one embodiment of the invention, credit dns server 100 can be implemented as credit DNS node.The credit
The function of DNS node or credit dns server 100 can be realized jointly by multiple groups server.
Based on the domain name analysis system based on credit server that the above embodiment of the present invention provides, in common domain name solution
A credit DNS node is increased in analysis data link, and the possible problematic parsing result in part is verified, Neng Goujian
Care for the efficiency and real result of domain name mapping.
The above embodiment of the present invention can jump reality by data link in existing domain name mapping and network access machine system
It is existing, hardware investment is not needed, improvement cost is low, and the authenticity of parsing result greatly improves, and operation benefit comparison is significant.
Fig. 2 is the schematic diagram of domain name analytic method first embodiment of the present invention.Preferably, the present embodiment can be by domain of the present invention
Name resolution system executes.As shown in Fig. 2, the method may include:
Step 201, the domain name mapping that route device 200 is initiated in response to client computer 400 is requested, and domain name parsing is asked
It asks and is drawn to credit dns server 100, wherein include target domain name server address, aiming field in domain name analysis request
Name server 300 is the name server that client computer 400 requests access to.
Step 202, credit dns server 100 judges whether the target domain name server address belongs to scheduled domain name
Server white list.
Step 203, if the target domain name server address is not belonging to scheduled name server white list, credit
Dns server 100 sends domain name analysis request to the target name server 300.
Step 204, the domain name mapping that the target name server 300 returns is recorded and is awarded by credit dns server 100
The benchmark domain name mapping record of letter 100 self maintained of dns server compares verification.
Step 205, credit dns server 100 forms final parsing result according to check results and returns to client computer
400。
Based on the domain name analytic method based on credit server that the above embodiment of the present invention provides, in common domain name solution
A credit DNS node is increased in analysis data link, and the possible problematic parsing result in part is verified, Neng Goujian
Care for the efficiency and real result of domain name mapping.
The above embodiment of the present invention can jump reality by data link in existing domain name mapping and network access machine system
It is existing, hardware investment is not needed, improvement cost is low, and the authenticity of parsing result greatly improves, and operation benefit comparison is significant.
Fig. 3 is the schematic diagram of domain name analytic method second embodiment of the present invention.Preferably, the present embodiment can be by domain of the present invention
Name resolution system executes.As shown in figure 3, the method may include:
Step 301, client computer 400 initiates domain name analysis request.
Step 302: route device 200 will be in request traction to credit dns server 100 using policybased routing.Wherein, exist
The white list of a domain name server address is maintained on credit dns server 100.
Step 303, credit dns server 100 judges whether the target domain name server address belongs to scheduled domain name
Server white list.If the target domain name server address belongs to scheduled name server white list, then follow the steps
304;Otherwise, if the target domain name server address is not belonging to scheduled name server white list, 306 are thened follow the steps.
Step 304, credit dns server 100 directly turns request of the target domain name server address in white list
Hair is not processed.
Step 305, which carries out domain name mapping, and parsing is tied
Fruit returns to client computer 400;Other steps of the present embodiment are no longer executed later.
Step 306, credit dns server 100 is initiated to the target name server 300 (non-credit dns server)
Domain name analysis request.
Step 307, credit dns server 100 returns to the target name server 300 (non-credit dns server)
Domain name mapping record and 100 self maintained of credit dns server benchmark domain name mapping record compare verification.
Step 308, credit dns server 100 is based on default mechanism, forms final parsing result according to check results and returns
Back to client computer 400.
The above embodiment of the present invention disposes credit DNS node in a network, accepts Client-initiated domain name mapping request, base
Make part in white list to shunt and result response.
The above embodiment of the present invention is not processed in the analysis request that domain name server address is white list, draws back net
Network;Domain name mapping request for non-white list initiates analysis request to non-credit DNS as agency from credit DNS node, and
The parsing result of the result and self maintained that will acquire compares verification, and domain name is kidnapped or distorted to discovery malice, and can basis
Preset strategy determines final parsing result.
Thus the above embodiment of the present invention increases a credit DNS node in common domain name mapping data link,
And the possible problematic parsing result in part is verified, the efficiency and real result of domain name mapping can be taken into account;This hair
Bright above-described embodiment can jump realization by data link in existing domain name mapping and network access machine system, not need hardware throwing
Enter, improvement cost is low, and the authenticity of parsing result greatly improves, and operation benefit comparison is significant.
Fig. 4 is the schematic diagram of domain name analysis system second embodiment of the present invention.Compared with embodiment illustrated in fig. 1, in Fig. 4 institute
Show in embodiment, domain name resolution system can also include recursion server 500 and authorization server 600, in which:
Recursion server 500, for determining the target domain name server address not in credit domain name system server 100
In the case where belonging to scheduled name server white list, domain name analysis request is sent to authorization server 600.
Authorization server 600, for being parsed to domain name analysis request, and to credit domain name system server
100 return to benchmark domain name mapping record.
Fig. 4 embodiment gives the schematic diagram of domain name analytic method 3rd embodiment of the present invention.As shown in figure 4, described
Domain name analytic method of the present invention may include:
Step 1, client computer 400 initiates domain name analysis request.
Step 2: route device 200 will be in request traction to credit dns server 100 using policybased routing.Wherein, it is awarding
The white list of a domain name server address is maintained on letter dns server 100.
Step 3, credit dns server 100 judges whether the target domain name server address belongs to scheduled domain name clothes
Business device white list.If the target domain name server address is not belonging to scheduled name server white list, 4A is thened follow the steps
With step 4C;Otherwise, it if the target domain name server address belongs to scheduled name server white list, thens follow the steps
4B。
Step 4B, credit dns server 100 directly forward request of the target domain name server address in white list
It is not processed.
Step 5B, which carries out domain name mapping, and parsing is tied
Fruit returns to client computer 400;Other steps of the present embodiment are no longer executed later.
Step 4A, credit dns server 100 initiate institute to the target name server 300 (non-credit dns server)
State domain name mapping request.
Step 5A, the target name server 300 (non-credit dns server) translate domain names into record (that is, parsing
IP address) return to credit dns server 100;Step 7 is executed later.
Such as: in the specific embodiment of Fig. 4, the IP address that target name server 300 parses is 3.3.3.3.
Domain name analysis request is transmitted to recursion server 500 by step 4C, credit dns server 100.
Step 5C, recursion server 500 initiate domain name analysis request to authorization server 600.
Step 6C, authorization server 600 parse domain name analysis request, and to credit domain name system server
100 return to benchmark domain name mapping record;Step 7 is executed later.
Such as: in Fig. 4 specific embodiment, the benchmark IP address that authorization server 600 parses is 1.1.1.1.
Step 7, credit dns server 100 returns to the target name server 300 (non-credit dns server)
Domain name mapping records (such as 3.3.3.3), records (such as 1.1.1.1) with the benchmark domain name mapping that authorization server 600 returns
Compare verification.
Step 8, credit dns server 100 is based on default mechanism, forms final parsing result according to check results and returns
To client computer 400.
The above embodiment of the present invention proposes a kind of domain name analytic method based on credit server, and parsing knot can be improved
The authenticity of fruit, and can find and record in time the parsing data that authenticity leaves a question open.
In one embodiment of the invention, the default mechanism may include: to return in the target name server 300
In the case that the domain name mapping record and benchmark domain name mapping record returned is consistent, verification passes through, by the benchmark domain name solution
New record returns to client computer 400.
In another embodiment of the invention, the default mechanism may include: to return in the target name server 300
The domain name mapping record (such as 3.3.3.3) returned and benchmark domain name mapping record (such as 1.1.1.1) are inconsistent, verify not
In the case where, the domain name mapping that the target name server 300 returns is corrected according to benchmark domain name mapping record
It records (such as 3.3.3.3), then revised domain name mapping record (such as 1.1.1.1) is returned into client computer 400;And/or
Verify in unacceptable situation, verify it is obstructed it is out-of-date only keep a record (that is, to target name server 300 return domain name mapping
Record is recorded with the benchmark domain name mapping), more parts of records are collected as a database, for supervising or data
Analysis uses.
The above embodiment of the present invention verify it is obstructed it is out-of-date can correct IP address, return again to client computer;Alternatively, verification is not
By when only keep a record, more parts of records are collected as a database, so that supervision or other occasions are done data analysis and used.By
This, the above embodiment of the present invention can be verified by result and collect data, formed reference database, be conducive to the prison of domain name mapping
Management is superintended and directed, or provides data supporting for other statistical analysis.
Knot below by specific embodiment to the credit dns server 100 mentioned in Fig. 1 or Fig. 4 embodiment of the present invention
Structure and function are further described.
Fig. 5 is the schematic diagram of credit domain name system server first embodiment of the present invention.As shown in figure 5, Fig. 1 of the present invention or
The credit dns server 100 of Fig. 4 embodiment may include request receiving module 110, the request turn of address judgment module 120, first
Send out module 130 and comparison correction verification module 140 and parsing result determining module 150, in which:
Request receiving module 110, the domain name mapping request come for receiving route device traction, wherein route device will
The domain name mapping request that client computer 400 is initiated is drawn to credit domain name system server, includes mesh in domain name analysis request
Domain name server address is marked, target name server 300 is the name server that client computer 400 requests access to.
Address judgment module 120, for judging whether the target domain name server address belongs to scheduled domain name service
Device white list.
First request forwarding module 130, for determining the target domain name server address not in address judgment module 120
In the case where belonging to scheduled name server white list, domain name parsing is sent to the target name server 300 and is asked
It asks.
Compare correction verification module 140, domain name mapping record and credit for returning to the target name server 300
The benchmark domain name mapping record of 100 self maintained of dns server compares verification.
Parsing result determining module 150, for forming final parsing result according to check results and returning to client computer
400。
Based on the credit domain name system server that the above embodiment of the present invention provides, in common domain name mapping data link
In increase a credit DNS node, and to part may problematic parsing result verify, domain name mapping can be taken into account
Efficiency and real result.
The above embodiment of the present invention can jump reality by data link in existing domain name mapping and network access machine system
It is existing, hardware investment is not needed, improvement cost is low, and the authenticity of parsing result greatly improves, and operation benefit comparison is significant.
The authenticity of parsing result can be improved in the above embodiment of the present invention, and can find and record in time authenticity and leave a question open
Parsing data.
In one embodiment of the invention, parsing result determining module 150 specifically can be used in comparison correction verification module
140 determine domain name mapping record consistent, verification with benchmark domain name mapping record that the target name server 300 returns
In the case where, benchmark domain name mapping record is returned into client computer 400.
In one embodiment of the invention, parsing result determining module 150 specifically can be used in the target domain name
Domain name mapping record and the benchmark domain name mapping that server 300 returns record in inconsistent, the unacceptable situation of verification, root
The domain name mapping record that the target name server 300 returns is corrected according to benchmark domain name mapping record, then will be after amendment
Domain name mapping record return client computer 400.
In another embodiment of the invention, parsing result determining module 150 specifically can be used in the target domain name
Domain name mapping record and the benchmark domain name mapping that server 300 returns record in inconsistent, the unacceptable situation of verification, right
The domain name mapping record that target name server 300 returns is recorded with the benchmark domain name mapping, and more parts are remembered
Record collects as a database.
The above embodiment of the present invention can be verified by result and collect data, formed reference database, be conducive to domain name solution
The supervision and management of analysis, or data supporting is provided for other statistical analysis.
Fig. 6 is the schematic diagram of credit domain name system server second embodiment of the present invention.Compared with embodiment illustrated in fig. 5,
In the embodiment shown in fig. 6, the credit domain name system server can also include the second request forwarding module 160 and benchmark note
Record receiving module 170, in which:
Second request forwarding module 160, for determining the target domain name server address not in address judgment module 120
In the case where belonging to scheduled name server white list, the domain is sent to authorization server 600 by recursion server 500
Name analysis request.
Reference recording receiving module 170, for receiving the benchmark domain name mapping record of the return of authorization server 600.
The domain name mapping record and the base that comparison correction verification module 140 is used to return to the target name server 300
Quasi- domain name mapping record compares verification.
In one embodiment of the invention, as shown in fig. 6, the credit domain name system server can also include third
Request forwarding module 180, in which:
Third requests forwarding module 180, for determining the target domain name server address category in address judgment module 120
In the case where scheduled name server white list, domain name analysis request is directly transmitted to the target domain name service
Device obtains domain name mapping as a result, and returning to domain name parsing result so that target name server carries out domain name mapping
Client computer 400.
The above embodiment of the present invention disposes credit DNS node in a network, accepts Client-initiated domain name mapping request, base
Make part in white list to shunt and result response.
The above embodiment of the present invention is not processed in the analysis request that domain name server address is white list, draws back net
Network;Domain name mapping request for non-white list initiates analysis request to non-credit DNS as agency from credit DNS node, and
The parsing result of the result and self maintained that will acquire compares verification, and domain name is kidnapped or distorted to discovery malice, and can basis
Preset strategy determines final parsing result.
Thus the above embodiment of the present invention increases a credit DNS node in common domain name mapping data link,
And the possible problematic parsing result in part is verified, the efficiency and real result of domain name mapping can be taken into account;This hair
Bright above-described embodiment can jump realization by data link in existing domain name mapping and network access machine system, not need hardware throwing
Enter, improvement cost is low, and the authenticity of parsing result greatly improves, and operation benefit comparison is significant.
Credit domain name system server described above can be implemented as executing function described herein
General processor, programmable logic controller (PLC) (PLC), digital signal processor (DSP), specific integrated circuit (ASIC), scene
Programmable gate array (FPGA) either other programmable logic device, discrete gate or transistor logic, discrete hardware group
Part or it is any appropriately combined.
So far, the present invention is described in detail.In order to avoid covering design of the invention, it is public that this field institute is not described
The some details known.Those skilled in the art as described above, completely it can be appreciated how implementing technology disclosed herein
Scheme.
Those of ordinary skill in the art will appreciate that realizing that all or part of the steps of above-described embodiment can pass through hardware
It completes, relevant hardware can also be instructed to complete by program, the program can store in a kind of computer-readable
In storage medium, storage medium mentioned above can be read-only memory, disk or CD etc..
Description of the invention is given for the purpose of illustration and description, and is not exhaustively or will be of the invention
It is limited to disclosed form.Many modifications and variations are obvious for the ordinary skill in the art.It selects and retouches
It states embodiment and is to more preferably illustrate the principle of the present invention and practical application, and those skilled in the art is enable to manage
The solution present invention is to design various embodiments suitable for specific applications with various modifications.
Claims (12)
1. a kind of domain name analytic method characterized by comprising
In response to the domain name mapping request that client computer is initiated, domain name analysis request is drawn to credit domain name system DNS clothes
Business device, wherein include target domain name server address in domain name analysis request, target name server is client requests
The name server of access;
Credit dns server judges whether the target domain name server address belongs to scheduled name server white list;
If the target domain name server address is not belonging to scheduled name server white list, credit dns server is to institute
It states target name server and sends domain name analysis request;
The domain name mapping record and credit dns server itself that credit dns server returns to the target name server are tieed up
The benchmark domain name mapping record of shield compares verification;
Credit dns server forms final parsing result according to check results and returns to client computer.
2. the method according to claim 1, wherein the credit dns server is by the target domain name service
The benchmark domain name mapping record of the domain name mapping record that device returns and credit dns server self maintained compares verification packet
It includes:
Credit dns server sends domain name analysis request to authorization server by recursion server;
Credit dns server receives the benchmark domain name mapping record that authorization server returns;
Domain name mapping record and the benchmark domain name mapping that credit dns server returns to the target name server record
Compare verification.
3. method according to claim 1 or 2, which is characterized in that the credit dns server is formed according to check results
Final parsing result simultaneously returns to client computer and includes:
If the domain name mapping record that the target name server returns is consistent with benchmark domain name mapping record, verification is logical
It crosses, benchmark domain name mapping record is returned into client computer.
4. method according to claim 1 or 2, which is characterized in that the credit dns server is formed according to check results
Final parsing result simultaneously returns to client computer and includes:
If the domain name mapping record that the target name server returns records inconsistent with the benchmark domain name mapping, verify
Do not pass through;
In the case where verifying unacceptable situation, correct what the target name server returned according to benchmark domain name mapping record
Domain name mapping record, then revised domain name mapping is recorded and returns to client computer;
And/or
The domain name mapping record returned in the case where verifying unacceptable situation to target name server and the benchmark domain name mapping
It is recorded, and more parts of records is collected as a database.
5. method according to claim 1 or 2, which is characterized in that further include:
If the target domain name server address belongs to scheduled name server white list, directly domain name parsing is asked
It asks and is transmitted to the target name server, obtain domain name mapping as a result, simultaneously so that target name server carries out domain name mapping
Domain name parsing result is returned into client computer.
6. a kind of credit domain name system server characterized by comprising
Request receiving module, the domain name mapping request come for receiving route device traction, wherein route device sends out client computer
The domain name mapping request risen is drawn to credit domain name system server, includes target name server in domain name analysis request
Address, target name server are the name server of client requests access;
Address judgment module, for judging whether the target domain name server address belongs to the white name of scheduled name server
It is single;
First request forwarding module, it is scheduled for determining that the target domain name server address is not belonging in address judgment module
In the case where name server white list, domain name analysis request is sent to the target name server;
Correction verification module is compared, the domain name mapping record and credit dns server for returning to the target name server are certainly
The benchmark domain name mapping record of body maintenance compares verification;
Parsing result determining module, for forming final parsing result according to check results and returning to client computer.
7. credit domain name system server according to claim 6, which is characterized in that further include:
Second request forwarding module, it is scheduled for determining that the target domain name server address is not belonging in address judgment module
In the case where name server white list, domain name analysis request is sent to authorization server by recursion server;
Reference recording receiving module, for receiving the benchmark domain name mapping record of authorization server return;
The domain name mapping record and the benchmark domain name mapping that comparison correction verification module is used to return to the target name server
Record compares verification.
8. credit domain name system server according to claim 6 or 7, which is characterized in that
Parsing result determining module is used to determine the domain name mapping note that the target name server returns in comparison correction verification module
Benchmark domain name mapping record is returned to visitor in the case that consistent, verification passes through with benchmark domain name mapping record by record
Family machine.
9. credit domain name system server according to claim 6 or 7, which is characterized in that
The domain name mapping that parsing result determining module is used to return in the target name server records and the benchmark domain name
Solution new record is inconsistent, verifies in unacceptable situation, corrects the target domain name according to benchmark domain name mapping record and takes
The domain name mapping record that business device returns, then revised domain name mapping is recorded and returns to client computer;And/or target domain name is taken
The domain name mapping record that business device returns is recorded with the benchmark domain name mapping, and more parts of records are collected as a number
According to library.
10. credit domain name system server according to claim 6 or 7, which is characterized in that further include:
Third requests forwarding module, scheduled for determining that the target domain name server address is not belonging in address judgment module
In the case where name server white list, domain name analysis request is directly transmitted to the target name server, so as to
Target name server carries out domain name mapping and obtains domain name mapping as a result, and domain name parsing result is returned to client computer.
11. a kind of domain name analysis system, which is characterized in that including target name server, route device and such as claim
Credit domain name system server described in any one of 6-10.
12. credit domain name system server according to claim 11, which is characterized in that further include:
Recursion server, it is scheduled for determining that the target domain name server address is not belonging in credit domain name system server
In the case where name server white list, domain name analysis request is sent to authorization server;
Authorization server returns to benchmark for parsing to domain name analysis request, and to credit domain name system server
Domain name mapping record.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710554186.9A CN109246256A (en) | 2017-07-10 | 2017-07-10 | Domain name analytic method and system, credit domain name system server |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710554186.9A CN109246256A (en) | 2017-07-10 | 2017-07-10 | Domain name analytic method and system, credit domain name system server |
Publications (1)
Publication Number | Publication Date |
---|---|
CN109246256A true CN109246256A (en) | 2019-01-18 |
Family
ID=65082717
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710554186.9A Pending CN109246256A (en) | 2017-07-10 | 2017-07-10 | Domain name analytic method and system, credit domain name system server |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN109246256A (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112311722A (en) * | 2019-07-26 | 2021-02-02 | 中国移动通信有限公司研究院 | Access control method, device, equipment and computer readable storage medium |
CN113067907A (en) * | 2020-01-02 | 2021-07-02 | 中国移动通信有限公司研究院 | Method and related equipment for addressing edge application |
Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20070165542A1 (en) * | 2006-01-19 | 2007-07-19 | Samsung Electronics Co., Ltd. | Domain name system, medium, and method updating server address information |
CN102884764A (en) * | 2012-06-30 | 2013-01-16 | 华为技术有限公司 | Message receiving method, deep packet inspection device, and system |
CN103581363A (en) * | 2013-11-29 | 2014-02-12 | 杜跃进 | Method and device for controlling baleful domain name and illegal access |
CN103825895A (en) * | 2014-02-24 | 2014-05-28 | 联想(北京)有限公司 | Information processing method and electronic device |
CN104079683A (en) * | 2014-07-14 | 2014-10-01 | 北京快易博科技有限公司 | Domain name resolution method and system authorizing direct response of domain name server |
CN104168339A (en) * | 2014-06-30 | 2014-11-26 | 汉柏科技有限公司 | Method and device for preventing domain name from being intercepted |
CN105656950A (en) * | 2016-04-13 | 2016-06-08 | 南京烽火软件科技有限公司 | HTTP (Hyper Text Transport Protocol) access hijack detection and purification device and method based on domain name |
CN106550056A (en) * | 2015-09-18 | 2017-03-29 | 中国移动通信集团江苏有限公司 | A kind of domain name analytic method and device |
-
2017
- 2017-07-10 CN CN201710554186.9A patent/CN109246256A/en active Pending
Patent Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20070165542A1 (en) * | 2006-01-19 | 2007-07-19 | Samsung Electronics Co., Ltd. | Domain name system, medium, and method updating server address information |
CN102884764A (en) * | 2012-06-30 | 2013-01-16 | 华为技术有限公司 | Message receiving method, deep packet inspection device, and system |
CN103581363A (en) * | 2013-11-29 | 2014-02-12 | 杜跃进 | Method and device for controlling baleful domain name and illegal access |
CN103825895A (en) * | 2014-02-24 | 2014-05-28 | 联想(北京)有限公司 | Information processing method and electronic device |
CN104168339A (en) * | 2014-06-30 | 2014-11-26 | 汉柏科技有限公司 | Method and device for preventing domain name from being intercepted |
CN104079683A (en) * | 2014-07-14 | 2014-10-01 | 北京快易博科技有限公司 | Domain name resolution method and system authorizing direct response of domain name server |
CN106550056A (en) * | 2015-09-18 | 2017-03-29 | 中国移动通信集团江苏有限公司 | A kind of domain name analytic method and device |
CN105656950A (en) * | 2016-04-13 | 2016-06-08 | 南京烽火软件科技有限公司 | HTTP (Hyper Text Transport Protocol) access hijack detection and purification device and method based on domain name |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112311722A (en) * | 2019-07-26 | 2021-02-02 | 中国移动通信有限公司研究院 | Access control method, device, equipment and computer readable storage medium |
CN113067907A (en) * | 2020-01-02 | 2021-07-02 | 中国移动通信有限公司研究院 | Method and related equipment for addressing edge application |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10581908B2 (en) | Identifying phishing websites using DOM characteristics | |
CN103442008B (en) | A kind of routing safety detecting system and detection method | |
US20200204587A1 (en) | Identifying phishing websites using dom characteristics | |
CN103701795B (en) | The recognition methods of the attack source of Denial of Service attack and device | |
CN105516165B (en) | A kind of method illegally acted on behalf of, equipment and the system of identification charging fraud | |
WO2015158193A1 (en) | Method and system for providing root domain name resolution service | |
CN109951500A (en) | Network attack detecting method and device | |
CN105279087B (en) | Apply method of testing and test system in test software | |
CN103856436B (en) | Method, home gateway and the Internet of selecting network by user equipment layer protocol | |
CN106068639A (en) | The Transparent Proxy certification processed by DNS | |
CN104065532A (en) | Unrecorded website search method and system based on multi-channel data access method | |
CN105337786B (en) | A kind of server performance detection method, device and equipment | |
CN105610867B (en) | A kind of anti-abduction method and apparatus of DNS | |
CN108040085A (en) | Method for network access, device and server | |
CN104754066B (en) | A kind of message processing method and message processor | |
CN106453229B (en) | For detecting newer method, system and medium to record of domain name system system | |
CN103873604B (en) | Network access method based on analysis of CDN data | |
CN107707683B (en) | A kind of method and apparatus for reducing DNS message lengths | |
CN103957282B (en) | Terminal user's domain name mapping acceleration system and its method in a kind of domain | |
CN103634159B (en) | A kind of traffic playback method and device based on simulation login | |
CN110474994A (en) | Domain name analytic method, device, electronic equipment and storage medium | |
CN110096396B (en) | Control method for packet test, distributed application system and storage medium | |
CN105025025A (en) | Cloud-platform-based domain name active detecting method and system | |
CN105763664A (en) | Search method and system of unrecorded websites | |
CN103685584B (en) | A kind of anti-Domain Hijacking method and system based on tunneling technique |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20190118 |
|
RJ01 | Rejection of invention patent application after publication |