×

Method and system for detecting malicious domain names at an upper DNS hierarchy

  • US 9,686,291 B2
  • Filed: 12/04/2013
  • Issued: 06/20/2017
  • Est. Priority Date: 02/01/2011
  • Status: Active Grant
First Claim
Patent Images

1. A method for detecting a malicious domain name, comprising:

  • collecting statistical information about a domain name from at least one non-recursive domain name system name server (RDNS NS), wherein the domain name statistical information comprises at least one of requester diversity information and requester profile information;

    wherein the requester diversity information identifies each RDNS NS that queries the domain name as either localized or globally distributed, and wherein the requester profile information identifies each RDNS NS as being associated with one of internet service provider networks and enterprise networks; and

    utilizing the collected domain name statistical information to determine the reputation of a domain name and whether a domain name is malicious or benign.

View all claims
  • 12 Assignments
Timeline View
Assignment View
    ×
    ×