Securing client connections
First Claim
Patent Images
1. A system, comprising:
- a set of one or more interfaces configured to;
receive input including a second level domain, wherein the second level domain is associated with a particular top level domain; and
obtain a policy associated with the top level domain, wherein the policy includes at least one requirement regarding Domain Name System Security Extensions (DNSSEC);
a processor configured to;
determine whether connection information is consistent with the policy, wherein the at least one requirement includes a requirement that a Domain Name System (DNS) response associated with the connection be DNSSEC signed and wherein the system is configured to send a second request in response to a determination that the response is not signed; and
display content based on the determination; and
a memory coupled to the processor and configured to provide the processor with instructions.
1 Assignment
0 Petitions
Accused Products
Abstract
An input including a second level domain is received. The second level domain is associated with a particular top level domain. A policy associated with the top level domain is obtained. A determination is made as to whether connection information is consistent with the policy. Content is displayed based on the determination.
-
Citations
20 Claims
-
1. A system, comprising:
-
a set of one or more interfaces configured to; receive input including a second level domain, wherein the second level domain is associated with a particular top level domain; and obtain a policy associated with the top level domain, wherein the policy includes at least one requirement regarding Domain Name System Security Extensions (DNSSEC); a processor configured to; determine whether connection information is consistent with the policy, wherein the at least one requirement includes a requirement that a Domain Name System (DNS) response associated with the connection be DNSSEC signed and wherein the system is configured to send a second request in response to a determination that the response is not signed; and display content based on the determination; and a memory coupled to the processor and configured to provide the processor with instructions. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A method, comprising:
-
receiving input including a second level domain, wherein the second level domain is associated with a particular top level domain; obtaining a policy associated with the top level domain, wherein the policy includes at least one requirement regarding Domain Name System Security Extensions (DNSSEC); determining whether connection information is consistent with the policy, wherein the at least one requirement includes a requirement that a Domain Name System (DNS) response associated with the connection be DNSSEC signed and wherein the system is configured to send a second request in response to a determination that the response is not signed; and displaying content based on the determination. - View Dependent Claims (18, 19)
-
-
20. A computer program product embodied in a tangible non-transitory computer readable storage medium and comprising computer instructions for:
-
receiving input including a second level domain, wherein the second level domain is associated with a particular top level domain; obtaining a policy associated with the top level domain, wherein the policy includes at least one requirement regarding Domain Name System Security Extensions (DNSSEC); determining whether connection information is consistent with the policy, wherein the at least one requirement includes a requirement that a Domain Name System (DNS) response associated with the connection be DNSSEC signed and wherein the system is configured to send a second request in response to a determination that the response is not signed; and displaying content based on the determination.
-
Specification