Agile network protocol for secure communications using secure domain names

US 9,967,240 B2
Filed: 05/12/2015
Issued: 05/08/2018
Est. Priority Date: 10/30/1998
Status: Expired due to Fees

First Claim

Patent Images

1. A non-transitory computer-readable storage medium storing instructions that, when executed by a computer, cause the computer to perform a method for registering a secure domain name, the method comprising steps of:

receiving a request for registering a first domain name used for establishing an encrypted communication link;

verifying ownership information for an equivalent second domain name, corresponding to the first domain name, that is not used for establishing the encrypted communication link;

registering the first domain name in a domain name service configured to support establishment of encrypted communication links when the ownership information for the second domain name is consistent with ownership information for the first domain name.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A secure domain name service for a computer network is disclosed that includes a portal connected to a computer network, such as the Internet, and a domain name database connected to the computer network through the portal. The portal authenticates a query for a secure computer network address, and the domain name database stores secure computer network addresses for the computer network. Each secure computer network address is based on a non-standard top-level domain name, such as .scom, .sorg, .snet, .snet, .sedu, .smil and .sint.

Citations

28 Claims

1. A non-transitory computer-readable storage medium storing instructions that, when executed by a computer, cause the computer to perform a method for registering a secure domain name, the method comprising steps of:
- receiving a request for registering a first domain name used for establishing an encrypted communication link;
  
  verifying ownership information for an equivalent second domain name, corresponding to the first domain name, that is not used for establishing the encrypted communication link;
  
  registering the first domain name in a domain name service configured to support establishment of encrypted communication links when the ownership information for the second domain name is consistent with ownership information for the first domain name.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The non-transitory computer-readable storage medium according to claim 1, wherein the step of verifying ownership information includes steps of:
    - determining whether second domain name corresponding to the first domain name has been registered in a second domain name service; and
      
      querying whether the second domain name should be registered in the second domain name service when the second domain name has not been registered in second domain name service.
  - 3. The non-transitory computer-readable storage medium of claim 1, wherein the encrypted communication link is a link between computers in a virtual private network.
  - 4. The method of claim 1, further comprising registering the second domain name in association with a certain quality of service for the encrypted communication link.
  - 5. The method of claim 4, wherein the quality of service is a priority for packets transmitted on the encrypted communication link.

6. A method for registering a domain name, comprising steps of:
- (i) receiving a request for registering a first domain name used for establishing an encrypted communication link;
  
  (ii) verifying ownership information for a second domain name corresponding to the first domain name, wherein the second domain name is not used for establishing the encrypted communication link; and
  
  (ii) registering the first domain name when the ownership information for the second domain name is consistent with ownership information for the first domain name.
- View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14)
- - 7. The method of claim 6, wherein the first domain name comprises a non-standard top-level domain and the second domain name comprises a standard top-level domain.
  - 8. The method of claim 6, further comprising the step of storing information corresponding to the registration performed in step (iii) in a database separate from a database storing information for standard domain name registrations.
  - 9. The method according to claim 6, wherein the step of verifying ownership information includes steps of:
    - determining whether the second domain name has been registered in a domain name service; and
      
      querying whether the second domain name should be registered in the domain name service when the second domain name has not been registered in the domain name service.
  - 10. The method of claim 9, wherein the first domain name is a secure domain name.
  - 11. The method of claim 10, wherein the first domain name is registered in a secure domain name service.
  - 12. The method of claim 10, wherein the secure domain name has a top-level domain reserved for secure network connections.
  - 13. The non-transitory computer-readable storage medium of claim 10, wherein the secure domain name has a top-level domain reserved from secure network connections.
  - 14. The method of claim 6, wherein the encrypted communication link is a link between computers in a virtual private network.

15. A non-transitory computer-readable storage medium, comprising computer-readable instructions that, when executed by a computer, cause the computer to perform a method for registering a domain name, the method comprising steps of:
- receiving a request for registering a first domain name used for establishing an encrypted communication link;
  
  verifying ownership information for a second domain name corresponding to the first domain name, wherein the second domain name is not used for establishing the encrypted communication link; and
  
  registering the first domain name when the ownership information for the second domain name is consistent with ownership information for the first domain name.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The non-transitory computer readable storage medium of claim 15, wherein the first domain name comprises a non-standard top-level domain and the second domain name comprises a standard top-level domain.
  - 17. The computer-readable storage medium of claim 15, wherein the step of verifying ownership information includes steps of:
    - determining whether the second domain name has been registered in a domain name service; and
      
      querying whether the second domain name should be registered in the domain name service when the second domain name has not been registered in the domain name service.
  - 18. The non-transitory computer-readable storage medium of claim 17, wherein the encrypted communication link is a link between computers in a virtual private network.
  - 19. The non-transitory computer-readable storage medium of claim 15, the method further comprising registering the first domain name in association with a certain quality of service for the encrypted communication link.
  - 20. The non-transitory computer-readable storage medium of claim 19, wherein the quality of service is a priority for packets transmitted on the encrypted communication link.

21. A system comprising:
- memory; and
  
  one or more processors configured to execute instructions to;
  
  receive a request for registering a first domain name used for establishing an encrypted communication link;
  
  verify ownership information for an equivalent second domain name, corresponding to the first domain name, that is not used for establishing the encrypted communication link;
  
  register the second domain name in a domain name service configured to support establishment of encrypted communication links when the ownership information for the second domain name is consistent with ownership information for the first domain name.
- View Dependent Claims (22, 23)
- - 22. The system of claim 21, wherein the encrypted communication link is a link between computers in a virtual private network.
  - 23. The system of claim 21, wherein the one or more processors are further to execute instructions to register the second domain name in association with a certain quality of service for the encrypted communication link.

24. A system comprising:
- memory; and
  
  one or more processors configured to execute instructions to;
  
  (i) receive a request for registering a first domain name used for establishing an encrypted communication link;
  
  (ii) verify ownership information for a second domain name corresponding to the first domain name, wherein the second domain name is not used for establishing the encrypted communication link; and
  
  (ii) register the first domain name when the ownership information for the second domain name is consistent with ownership information for the first domain name.
- View Dependent Claims (25, 26, 27, 28)
- - 25. The system of claim 24, wherein the encrypted communication link is a link between computers in a virtual private network.
  - 26. The system of claim 24, wherein the quality of service is a priority for packets transmitted on the encrypted communication link.
  - 27. The system of claim 24, wherein the one or more processors are further to execute instructions to register the second domain name in association with a certain quality of service for the encrypted communication link.
  - 28. The system of claim 27, wherein the quality of service is a priority for packets transmitted on the encrypted communication link.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
VirnetX Inc. (Virnetx Holding Corporation)
Original Assignee
VirnetX Inc. (Virnetx Holding Corporation)
Inventors
Larson, Victor, Short, III, Robert Dunham, Munger, Edmund Colby, Williamson, Michael
Primary Examiner(s)
Lim, Krisna

Application Number

US14/710,470
Publication Number

US 20150244680A1
Time in Patent Office

1,092 Days
Field of Search
US Class Current
CPC Class Codes

G06F 16/951   Indexing; Web crawling tech...

G06F 21/606   by securing the transmissio...

H04L 12/4641   Virtual LANs, VLANs, e.g. v...

H04L 2101/30   Types of network names

H04L 2101/604   Address structures or formats

H04L 41/00   Arrangements for maintenanc...

H04L 45/00   Routing or path finding of ...

H04L 45/24   Multipath

H04L 45/28   using route fault recovery

H04L 61/30   Managing network names, e.g...

H04L 61/3015   Name registration, generati...

H04L 61/35   involving non-standard use ...

H04L 61/4511   using domain name system [DNS]

H04L 61/5007   Internet protocol [IP] addr...

H04L 61/5076   Update or notification mech...

H04L 61/5092   by self-assignment, e.g. pi...

H04L 63/0227   Filtering policies mail mes...

H04L 63/0272   Virtual private networks

H04L 63/04   for providing a confidentia...

H04L 63/0407   wherein the identity of one...

H04L 63/0421 : Anonymous communication, i....

H04L 63/0428 : wherein the data content is...

H04L 63/0435 : wherein the sending and rec...

H04L 63/0478 : applying multiple layers of...

H04L 63/0485 : Networking architectures fo...

H04L 63/08 : for authentication of entit...

H04L 63/0876 : based on the identity of th...

H04L 63/105 : Multiple levels of security

H04L 63/1408 : by monitoring network traff...

H04L 63/1416 : Event detection, e.g. attac...

H04L 63/1458 : Denial of Service

H04L 63/1466 : Active attacks involving in...

H04L 63/164 : at the network layer

H04L 63/168 : above the transport layer

H04L 67/14 : Session management for real...

H04L 67/141 : Setup of application sessio...

View All

Agile network protocol for secure communications using secure domain names

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

28 Claims

Specification

Solutions

Use Cases

Quick Links

Agile network protocol for secure communications using secure domain names

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

28 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links