Domain name system request processing method and device, electronic equipment and storage medium

Domain name system request processing method and device, electronic equipment and storage medium

The invention relates to the technical field of network security, and provides a domain name system request processing method and device, electronic equipment and a storage medium. The processing method comprises the following steps: in response to a DNS request, judging whether the DNS request is m...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: SHI GUOSHUI, LIU DONGXIN, WANG LAIFU, QIN YUE, HUANG DONGMEI
Format: Patent
Sprache:chi ; eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator SHI GUOSHUI
LIU DONGXIN
WANG LAIFU
QIN YUE
HUANG DONGMEI
description The invention relates to the technical field of network security, and provides a domain name system request processing method and device, electronic equipment and a storage medium. The processing method comprises the following steps: in response to a DNS request, judging whether the DNS request is matched with a DNS tunnel blacklist or a DRDoS (Distributed Reflection Denial of Service) blacklist; if yes, carrying out current limiting processing on the DNS request; if not, querying a DNS server according to the DNS request, obtaining response data of the DNS server, returning the response data, and caching target response data of which the response state is that the domain name does not have NXDomain; and updating the DNS tunnel blacklist and/or the DRDoS blacklist according to the target response data. According to the method, the abnormal DNS request can be quickly identified according to the DNS blacklist, the flow limiting processing is carried out, the adverse effect of the abnormal request on the whole n
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_CN113660275A</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>CN113660275A</sourcerecordid><originalsourceid>FETCH-epo_espacenet_CN113660275A3</originalsourceid><addsrcrecordid>eNqNy7EKwjAURuEuDqK-w3VXsIp1lqo4ObnXkPzWQHMTc28F394iPoDTWb4zLm6HGIxnYhNA8hZFoIxnD1FKOVqIeG4pQB_RkWFHDi9vsSB0sJoje0uD9ymA9QtEYzYthsf5PkyL0d10gtmvk2J-Ol7r8xIpNpBkLBja1Jey3FTVar3b7jf_mA_xgz2i</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Domain name system request processing method and device, electronic equipment and storage medium</title><source>esp@cenet</source><creator>SHI GUOSHUI ; LIU DONGXIN ; WANG LAIFU ; QIN YUE ; HUANG DONGMEI</creator><creatorcontrib>SHI GUOSHUI ; LIU DONGXIN ; WANG LAIFU ; QIN YUE ; HUANG DONGMEI</creatorcontrib><description>The invention relates to the technical field of network security, and provides a domain name system request processing method and device, electronic equipment and a storage medium. The processing method comprises the following steps: in response to a DNS request, judging whether the DNS request is matched with a DNS tunnel blacklist or a DRDoS (Distributed Reflection Denial of Service) blacklist; if yes, carrying out current limiting processing on the DNS request; if not, querying a DNS server according to the DNS request, obtaining response data of the DNS server, returning the response data, and caching target response data of which the response state is that the domain name does not have NXDomain; and updating the DNS tunnel blacklist and/or the DRDoS blacklist according to the target response data. According to the method, the abnormal DNS request can be quickly identified according to the DNS blacklist, the flow limiting processing is carried out, the adverse effect of the abnormal request on the whole n</description><language>chi ; eng</language><subject>ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRICITY ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2021</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20211116&amp;DB=EPODOC&amp;CC=CN&amp;NR=113660275A$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20211116&amp;DB=EPODOC&amp;CC=CN&amp;NR=113660275A$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>SHI GUOSHUI</creatorcontrib><creatorcontrib>LIU DONGXIN</creatorcontrib><creatorcontrib>WANG LAIFU</creatorcontrib><creatorcontrib>QIN YUE</creatorcontrib><creatorcontrib>HUANG DONGMEI</creatorcontrib><title>Domain name system request processing method and device, electronic equipment and storage medium</title><description>The invention relates to the technical field of network security, and provides a domain name system request processing method and device, electronic equipment and a storage medium. The processing method comprises the following steps: in response to a DNS request, judging whether the DNS request is matched with a DNS tunnel blacklist or a DRDoS (Distributed Reflection Denial of Service) blacklist; if yes, carrying out current limiting processing on the DNS request; if not, querying a DNS server according to the DNS request, obtaining response data of the DNS server, returning the response data, and caching target response data of which the response state is that the domain name does not have NXDomain; and updating the DNS tunnel blacklist and/or the DRDoS blacklist according to the target response data. According to the method, the abnormal DNS request can be quickly identified according to the DNS blacklist, the flow limiting processing is carried out, the adverse effect of the abnormal request on the whole n</description><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRICITY</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2021</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNy7EKwjAURuEuDqK-w3VXsIp1lqo4ObnXkPzWQHMTc28F394iPoDTWb4zLm6HGIxnYhNA8hZFoIxnD1FKOVqIeG4pQB_RkWFHDi9vsSB0sJoje0uD9ymA9QtEYzYthsf5PkyL0d10gtmvk2J-Ol7r8xIpNpBkLBja1Jey3FTVar3b7jf_mA_xgz2i</recordid><startdate>20211116</startdate><enddate>20211116</enddate><creator>SHI GUOSHUI</creator><creator>LIU DONGXIN</creator><creator>WANG LAIFU</creator><creator>QIN YUE</creator><creator>HUANG DONGMEI</creator><scope>EVB</scope></search><sort><creationdate>20211116</creationdate><title>Domain name system request processing method and device, electronic equipment and storage medium</title><author>SHI GUOSHUI ; LIU DONGXIN ; WANG LAIFU ; QIN YUE ; HUANG DONGMEI</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_CN113660275A3</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>chi ; eng</language><creationdate>2021</creationdate><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRICITY</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>SHI GUOSHUI</creatorcontrib><creatorcontrib>LIU DONGXIN</creatorcontrib><creatorcontrib>WANG LAIFU</creatorcontrib><creatorcontrib>QIN YUE</creatorcontrib><creatorcontrib>HUANG DONGMEI</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>SHI GUOSHUI</au><au>LIU DONGXIN</au><au>WANG LAIFU</au><au>QIN YUE</au><au>HUANG DONGMEI</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Domain name system request processing method and device, electronic equipment and storage medium</title><date>2021-11-16</date><risdate>2021</risdate><abstract>The invention relates to the technical field of network security, and provides a domain name system request processing method and device, electronic equipment and a storage medium. The processing method comprises the following steps: in response to a DNS request, judging whether the DNS request is matched with a DNS tunnel blacklist or a DRDoS (Distributed Reflection Denial of Service) blacklist; if yes, carrying out current limiting processing on the DNS request; if not, querying a DNS server according to the DNS request, obtaining response data of the DNS server, returning the response data, and caching target response data of which the response state is that the domain name does not have NXDomain; and updating the DNS tunnel blacklist and/or the DRDoS blacklist according to the target response data. According to the method, the abnormal DNS request can be quickly identified according to the DNS blacklist, the flow limiting processing is carried out, the adverse effect of the abnormal request on the whole n</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language chi ; eng
recordid cdi_epo_espacenet_CN113660275A
source esp@cenet
subjects ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title Domain name system request processing method and device, electronic equipment and storage medium
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-02T20%3A12%3A48IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=SHI%20GUOSHUI&rft.date=2021-11-16&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3ECN113660275A%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true