Providing privacy enhanced resolution system in the domain name system
First Claim
1. A non-transitory computer-readable medium encoded with instructions that, when executed on a processor, perform a method of minimizing the disclosure of a domain name contained in a domain name system (DNS) query, the method comprising:
- determining a first label and a second label associated with a domain name included in a domain name system (DNS) query;
querying a first nameserver for a first resource record type associated with the first label without revealing information related to the second label by removing information related to the second label from the DNS query;
receiving a first response from the first nameserver, the first response including the first resource record type which directs a resolver to a second nameserver;
querying the second nameserver for a second resource record type associated with the first label and the second label;
receiving a second response from the second nameserver, the second response including the second resource record type; and
transmitting at least the second resource record type in response to the DNS query.
1 Assignment
0 Petitions
Accused Products
Abstract
An apparatus and a non-transitory computer-readable medium may perform a method of minimizing the disclosure of a domain name contained in a DNS query. The method may include determining a first label and a second label associated with a domain name included in a DNS query. A first nameserver may be queried for a first resource record type associated with the first label without revealing information related to the second label by removing information related to the second label from the DNS query. A response may be received from the first nameserver, and the response may include the first resource record type which directs a resolver to a second nameserver. The second nameserver may be queried for a second resource record type associated with the first label and the second label.
-
Citations
16 Claims
-
1. A non-transitory computer-readable medium encoded with instructions that, when executed on a processor, perform a method of minimizing the disclosure of a domain name contained in a domain name system (DNS) query, the method comprising:
-
determining a first label and a second label associated with a domain name included in a domain name system (DNS) query; querying a first nameserver for a first resource record type associated with the first label without revealing information related to the second label by removing information related to the second label from the DNS query; receiving a first response from the first nameserver, the first response including the first resource record type which directs a resolver to a second nameserver; querying the second nameserver for a second resource record type associated with the first label and the second label; receiving a second response from the second nameserver, the second response including the second resource record type; and transmitting at least the second resource record type in response to the DNS query. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory computer-readable medium encoded with instructions that, when executed on a processor, perform a method of minimizing the disclosure of a domain name contained in a domain name system (DNS) query, the method comprising:
-
determining a first label and a second label associated with a domain name included in a domain name system (DNS) query; generating a false label; querying a first nameserver for a first resource record type associated with the first label and the false label without revealing the second label to the first nameserver by removing information related to the second label from the DNS query, wherein the first nameserver is a root nameserver; receiving a first response from the first nameserver including the first resource record type, the first resource record type directing a resolver to a second nameserver; querying the second nameserver for a second resource record type associated with the first label and the second label; receiving a second response from the second nameserver including the second resource record type; and transmitting at least the second resource record type in response to the DNS query. - View Dependent Claims (9, 10, 11)
-
-
12. An apparatus for minimizing the disclosure of a domain name contained in a domain name system (DNS) query, comprising:
-
a memory; and a processor communicatively coupled to the memory, the processor being configured to; determine a first label and a second label associated with a domain name included in a domain name system (DNS) query; query a first nameserver for a first resource record type associated with the first label without revealing the second label to the first nameserver by removing information related to the second label from the DNS query; receive a first response from the first nameserver including the first resource record type, the first resource record type directing a resolver to a second nameserver; query the second nameserver for a second resource record type associated with the first label and the second label; receive a second response from the second nameserver including the second resource record type; and transmit at least the second resource record type in response to the DNS query. - View Dependent Claims (13, 14, 15, 16)
-
Specification