Defeating cache resistant domain name systems
First Claim
Patent Images
1. A domain name caching system, comprising:
- a processor;
and a memory component communicatively coupled to the processor, the memory component having stored therein computer-executable instructions that when executed by the processor cause the processor to implement;
a receiver component configured to receive a domain name lookup request, wherein the domain lookup request includes a nonce;
a nonce removal component configured to remove the nonce from the domain name lookup request;
a resolver component configured to return information from a cache in response to the domain name lookup request without the nonce; and
an inference component configured to facilitate ascertaining a location of the nonce based on characteristics of a nonce protocol.
2 Assignments
0 Petitions
Accused Products
Abstract
Domain name caching mechanisms are provided to address cache-defeating approaches. Domain name lookup requests are processed and cached information associated with a non-identical domain name returned in response. Cache-defeating behavior including nonce injection can be detected or inferred and employed to map domain name requests to previously cached information thereby exposing the benefits of caching.
63 Citations
19 Claims
-
1. A domain name caching system, comprising:
-
a processor; and a memory component communicatively coupled to the processor, the memory component having stored therein computer-executable instructions that when executed by the processor cause the processor to implement; a receiver component configured to receive a domain name lookup request, wherein the domain lookup request includes a nonce; a nonce removal component configured to remove the nonce from the domain name lookup request; a resolver component configured to return information from a cache in response to the domain name lookup request without the nonce; and an inference component configured to facilitate ascertaining a location of the nonce based on characteristics of a nonce protocol. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A domain name caching method, comprising:
-
employing a processor to execute computer executable instructions stored on a computer readable storage medium to implement the following acts; receiving a domain name, wherein the domain name includes a nonce; removing the nonce from the domain name; returning a cached IP address associated with the domain name without the nonce; and ascertaining a location of the nonce based on characteristics of a nonce protocol. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A domain name caching system, comprising:
-
means for caching a result of an initial domain name lookup; means for receiving a subsequent domain name lookup, wherein the subsequent domain name lookup includes a nonce; means for removing the nonce from the subsequent domain name lookup; means for serving the result in response to associating the subsequent domain name lookup with the initial domain name; and means for ascertaining a location of the nonce based on characteristics of a nonce protocol. - View Dependent Claims (19)
-
Specification