User authenticated encrypted communication link
First Claim
1. A computer-implemented method for establishing an encrypted communication link between a first device and a second device, the method comprising:
- accessing, from a storage, identification information of a user of the first device;
receiving, at a domain name server, a Domain Name Service (DNS) request from the first device requesting a network address corresponding to a domain name associated with the second device, the domain name being used to establish the encrypted communication link to the second device;
authenticating, at the domain name server, the user based on the user identification information, the user identification information including biometric information of the user; and
transmitting the network address in response to the DNS request based on a determination that the user has been authenticated at the domain name server using the biometric information of the user,wherein the encrypted communication link between the first device and the second device is established based on the network address;
wherein the step of authenticating the user includes receiving, from the first device, a first hash value generated based on the user identification information.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods are provided for establishing an encrypted communication link between a first device and a second device. One exemplary computer-implemented method includes accessing, from a storage, identification information of a user of the first device. The method further includes receiving, at a domain name server, a Domain Name Service (DNS) request from the first device requesting a network address corresponding to a domain name associated with the second device, the domain name being used to establish the encrypted communication link to the second device. The method further includes authenticating the user based on the user identification information, the user identification information including biometric information of the user. The method also includes transmitting network address in response to the DNS request based on a determination that the user has been authenticated at the domain name server using the biometric information of the user. The encrypted communication link between the first device and the second device is established based on the network address.
-
Citations
21 Claims
-
1. A computer-implemented method for establishing an encrypted communication link between a first device and a second device, the method comprising:
-
accessing, from a storage, identification information of a user of the first device; receiving, at a domain name server, a Domain Name Service (DNS) request from the first device requesting a network address corresponding to a domain name associated with the second device, the domain name being used to establish the encrypted communication link to the second device; authenticating, at the domain name server, the user based on the user identification information, the user identification information including biometric information of the user; and transmitting the network address in response to the DNS request based on a determination that the user has been authenticated at the domain name server using the biometric information of the user, wherein the encrypted communication link between the first device and the second device is established based on the network address; wherein the step of authenticating the user includes receiving, from the first device, a first hash value generated based on the user identification information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A domain name server for establishing an encrypted communication link between a first device and a second device, the domain name server comprising:
-
a data storage device storing identification information for a plurality of devices; a memory storing instructions; and one or more processors configured to execute the instructions to; access, from the storage, identification information of a user of the first device; receive, at the domain name server, a Domain Name Service (DNS) request from the first device requesting a secure network address corresponding to a domain name associated with the second device, the domain name being used to establish the encrypted communication link to the second device; authenticate, at the domain name server, the user based on the user identification information, the user identification information including biometric information of the user; and transmit the network address in response to the DNS request based on a determination that the user has been authenticated at the domain name server using the biometric information of the user, wherein the encrypted communication link between the first device and the second device is established based on the network address; wherein the step of authenticating the user includes receiving, from the first device, a first hash value generated based on the user identification information. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A computer-implemented method for establishing an encrypted communication link between a first device and a second device, the method comprising:
-
determining, by a domain name service, whether the first device is enabled for biometric authentication of a user; and based on a determination that the first device is enabled for biometric authentication of the user; accessing, from a storage, identification information of the user of the first device; receiving, at a domain name server, a Domain Name Service (DNS) request from the first device requesting a network address corresponding to a domain name associated with the second device, the domain name being used to establish the encrypted communication link to the second device; authenticating, at the domain name server, the user based on the user identification information, the user identification information including biometric information of the user, wherein the authenticating includes receiving, from the first device, a first hash value generated based on the user identification information; and transmitting the network address in response to the DNS request based on a determination that the user has been authenticated at the domain name server using the biometric information of the user, wherein the encrypted communication link between the first device and the second device is established based on the network address.
-
Specification