METHOD AND APPARATUS FOR DETECTING DOMAIN NAME TAKEOVER VULNERABILITY

The present invention relates to the technical field of the Internet, and provides a method and apparatus for detecting a domain name takeover vulnerability. The method comprises: querying a recursive resolution server for a DNS A record of a target domain name; obtaining a DNS response message, and...

Ausführliche Beschreibung

Gespeichert in:

Bibliographische Detailangaben
1. Verfasser:	HOU, Heming
Format:	Patent
Sprache:	chi ; eng ; fre
Schlagworte:	ELECTRIC COMMUNICATION TECHNIQUE ELECTRICITY TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:	Volltext bestellen
Tags:	Tag hinzufügen Keine Tags, Fügen Sie den ersten Tag hinzu!

container_end_page
container_issue
container_start_page
container_title
container_volume
creator	HOU, Heming
description	The present invention relates to the technical field of the Internet, and provides a method and apparatus for detecting a domain name takeover vulnerability. The method comprises: querying a recursive resolution server for a DNS A record of a target domain name; obtaining a DNS response message, and when checking that a DNS response status code thereof is SERVFAIL, querying NS servers for the DNS A record of the target domain name; and querying an NS_1 server for a DNS NS record of DOMAIN_1, comparing the obtained DNS NS record with NS_1, and if same do not match, affirming that there is a domain name takeover vulnerability. In the present invention, by means of respective data maintenance characteristics of a current-level NS server and an upper-level NS server thereof, the problem of the presence of a domain name takeover vulnerability is analyzed when the resolution of the DNS A record of the target domain name fails. La présente invention, qui relève du domaine technique de l'internet, concerne un procédé
format	Patent
fullrecord	<record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_WO2023040070A1</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>WO2023040070A1</sourcerecordid><originalsourceid>FETCH-epo_espacenet_WO2023040070A13</originalsourceid><addsrcrecordid>eNrjZHD1dQ3x8HdRcPQD4oAAxyDHkNBgBTf_IAUX1xBX5xBPP3cFF39fR08_BT9HX1eFEEdvV_8w1yCFsFAfP9cgRydPH8-QSB4G1rTEnOJUXijNzaDs5hri7KGbWpAfn1pckJicmpdaEh_ub2RgZGxgYmBgbuBoaEycKgAtzizn</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>METHOD AND APPARATUS FOR DETECTING DOMAIN NAME TAKEOVER VULNERABILITY</title><source>esp@cenet</source><creator>HOU, Heming</creator><creatorcontrib>HOU, Heming</creatorcontrib><description>The present invention relates to the technical field of the Internet, and provides a method and apparatus for detecting a domain name takeover vulnerability. The method comprises: querying a recursive resolution server for a DNS A record of a target domain name; obtaining a DNS response message, and when checking that a DNS response status code thereof is SERVFAIL, querying NS servers for the DNS A record of the target domain name; and querying an NS_1 server for a DNS NS record of DOMAIN_1, comparing the obtained DNS NS record with NS_1, and if same do not match, affirming that there is a domain name takeover vulnerability. In the present invention, by means of respective data maintenance characteristics of a current-level NS server and an upper-level NS server thereof, the problem of the presence of a domain name takeover vulnerability is analyzed when the resolution of the DNS A record of the target domain name fails. La présente invention, qui relève du domaine technique de l'internet, concerne un procédé</description><language>chi ; eng ; fre</language><subject>ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRICITY ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2023</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20230323&DB=EPODOC&CC=WO&NR=2023040070A1$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,309,781,886,25566,76549</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20230323&DB=EPODOC&CC=WO&NR=2023040070A1$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>HOU, Heming</creatorcontrib><title>METHOD AND APPARATUS FOR DETECTING DOMAIN NAME TAKEOVER VULNERABILITY</title><description>The present invention relates to the technical field of the Internet, and provides a method and apparatus for detecting a domain name takeover vulnerability. The method comprises: querying a recursive resolution server for a DNS A record of a target domain name; obtaining a DNS response message, and when checking that a DNS response status code thereof is SERVFAIL, querying NS servers for the DNS A record of the target domain name; and querying an NS_1 server for a DNS NS record of DOMAIN_1, comparing the obtained DNS NS record with NS_1, and if same do not match, affirming that there is a domain name takeover vulnerability. In the present invention, by means of respective data maintenance characteristics of a current-level NS server and an upper-level NS server thereof, the problem of the presence of a domain name takeover vulnerability is analyzed when the resolution of the DNS A record of the target domain name fails. La présente invention, qui relève du domaine technique de l'internet, concerne un procédé</description><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRICITY</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2023</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNrjZHD1dQ3x8HdRcPQD4oAAxyDHkNBgBTf_IAUX1xBX5xBPP3cFF39fR08_BT9HX1eFEEdvV_8w1yCFsFAfP9cgRydPH8-QSB4G1rTEnOJUXijNzaDs5hri7KGbWpAfn1pckJicmpdaEh_ub2RgZGxgYmBgbuBoaEycKgAtzizn</recordid><startdate>20230323</startdate><enddate>20230323</enddate><creator>HOU, Heming</creator><scope>EVB</scope></search><sort><creationdate>20230323</creationdate><title>METHOD AND APPARATUS FOR DETECTING DOMAIN NAME TAKEOVER VULNERABILITY</title><author>HOU, Heming</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_WO2023040070A13</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>chi ; eng ; fre</language><creationdate>2023</creationdate><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRICITY</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>HOU, Heming</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>HOU, Heming</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>METHOD AND APPARATUS FOR DETECTING DOMAIN NAME TAKEOVER VULNERABILITY</title><date>2023-03-23</date><risdate>2023</risdate><abstract>The present invention relates to the technical field of the Internet, and provides a method and apparatus for detecting a domain name takeover vulnerability. The method comprises: querying a recursive resolution server for a DNS A record of a target domain name; obtaining a DNS response message, and when checking that a DNS response status code thereof is SERVFAIL, querying NS servers for the DNS A record of the target domain name; and querying an NS_1 server for a DNS NS record of DOMAIN_1, comparing the obtained DNS NS record with NS_1, and if same do not match, affirming that there is a domain name takeover vulnerability. In the present invention, by means of respective data maintenance characteristics of a current-level NS server and an upper-level NS server thereof, the problem of the presence of a domain name takeover vulnerability is analyzed when the resolution of the DNS A record of the target domain name fails. La présente invention, qui relève du domaine technique de l'internet, concerne un procédé</abstract><oa>free_for_read</oa></addata></record>
fulltext	fulltext_linktorsrc
identifier
ispartof
issn
language	chi ; eng ; fre
recordid	cdi_epo_espacenet_WO2023040070A1
source	esp@cenet
subjects	ELECTRIC COMMUNICATION TECHNIQUE ELECTRICITY TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title	METHOD AND APPARATUS FOR DETECTING DOMAIN NAME TAKEOVER VULNERABILITY
url	https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-18T08%3A34%3A28IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=HOU,%20Heming&rft.date=2023-03-23&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EWO2023040070A1%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true