68 results about "Zone file" patented technology

Downloading an authoritative zone file and performing searches within the zone file can identify all of the domain names registered to an entity. A method of identifying all of the domain names registered to an entity may including downloading a root zone file from a registry or from a root server and storing the root zone file as a text file with alphanumeric character strings associating each domain name with a registrar and at least one domain name server. A search characteristic is established corresponding to a character string comprising a significant part of one of the entity's domain names. A string search is performed in the download root zone file for the search characteristic to identify one or more domain names matching the search characteristic, as well as a registrar corresponding to the matching domain name and at least one domain name server associated with the matching domain name in the downloaded root zone file. Each matching domain name is stored in a data file, so that the data file associates each extracted domain name with the corresponding registrar and the at least one domain name server. The method continues by repeating, at least once, the successive processes of establishing a second search characteristic, extracting from the registry at least one additional domain name on the basis of the second search characteristic and storing each additional matching domain name in the data file.

A system and method facilitates communication of domain management functions and information between a front-end server, utilized for example by an unaccredited registrar or other type of partner site, and a back-end server. Typically the back-end server has direct access to the shared registry system (SRS) and is of the type such as might be found within an accredited registrar. Communication between the front-end server and the back-end server is through a lightweight protocol. The front-end server generates a graphical user interface on an operator's terminal. An operator enters information to the front-end server through the graphical user interface and generates a message from the operator terminal to the front-end server. The front-end server parses the message, extracts information appropriate to the requested function, and generates a compact command message to send to the back-end server. Preferably, the back-end server receives the command through a command-line or similar interpreter and performs a function or extracts information as requested by the front-end server. A variety of DNS or zone file information can be altered using simple graphical user interfaces into which an operator enters change information. The front-end server parses the change information from the operator and passes data representative of that change information to the back-end domain manager server. The requested information or a completion message is sent from the back-end server using a similar lightweight protocol.

Techniques for electronically signing DNS records stored in a zone file for an internet DNS zone are presented. The techniques include electronically accessing a plurality of DNS resource records of a DNS zone stored on one or more DNS servers of a distributed DNS database; generating a plurality of leaf nodes from the plurality of DNS resource records; constructing a recursive hash tree from the plurality of leaf nodes, where the recursive hash tree includes a plurality of nodes including a root node and the plurality of leaf nodes, where each node of the plurality of nodes includes either a leaf node or a hash of data including child nodes; storing the root node in a DNS key resource record for a zone signing key for the zone; and publishing, in a DNS resource record signature resource record, validation data including path data from the recursive hash tree.

A system and method that facilitates entities acting as agents to manage plural domains for plural registrants includes a domain manager capable of direct attachment to the shared registry system. The domain manager resides on a server of an accredited registrar or on a server of a partner website that has made a server of an accredited registrar authoritative for at least plural domain names. A variety of DNS or zone file information can be altered using simple graphical user interfaces to enter change information and pass that change information to the domain manager server. The domain manager server passes the change information to the DNS servers either directly through the SRS or through an accredited server that passes the change information through the SRS and to the root servers. Most preferably, the domain manager has substantially direct access to the shared registry system, which asynchronously updates the DNS servers. The domain manager may also provide a variety of utilities that allow an operator to perform diagnostics on the domain, its name and its registration.

The present invention provides a new and improved domain name searching method and system which comprises steps selected from the group consisting of (1) downloading all zone files, public and / or non-public, associated with one or more host names; (2) performing reverse DNS on IPs associated with said host names in associated root servers and name servers; (3) crawling websites associated with said host names and seeking new hosts on known websites in different TLDs; (4) indexing all new host names found; (5) resolving the associated IP address with each host name, and with optionally appending “www” thereby; (6) storing DNS entries and indexing same while logging their association with host names; (7) repeating any of steps (1) through (6) one or more times.

A method of recovering a registry includes accessing a plurality of registry zone files for the registry and archiving, on a first periodic basis, the plurality of registry zone files. Each of the registry zone files includes at least domain names, registrar IDs, and status information represented in a first predetermined format. The method also includes accessing bulk WHOIS data for the registry and archiving, on a second periodic basis, the bulk WHOIS data. The bulk WHOIS data includes at least nameserver server names, IP addresses, and status information represented in a second predetermined format. The method further includes validating one of the plurality of archived registry zone files based on a comparison between the plurality of registry zone files and the bulk WHOIS data, publishing the validated registry zone file to a second registry's nameservers, initiating a root zone change request, and updating authoritative nameservers.

A domain server that comprises: means (10) for receiving a query transmitted from a client device (CL1) for obtaining DNS data; a zone file (FZ1, zone) comprising one or more distribution rules defining a partitioning of the domain into sub-zones, DNS data of said sub-zones being associated with a pair of partition keys specific to said sub-zone; means (20) for obtaining from said zone file a useful piece of information sufficient for identifying the pair of the partition keys associated with the required DNS data; and means (10) for transmitting to the client device (CL1): the required DNS data, the value of the signature of said data produced by means of the private component (ZSK2[pr]) of the pair of partition keys; and the useful piece of information.

Disclosed is a system, method, and program for writing data to a storage medium formatted into a plurality of zones. Each zone comprises at least one circumferential track, each track comprises a plurality of addressable sectors, and the innermost zones have fewer sectors than outermost zones. A request is received to write a file to the storage medium. A determination is made of a utilization factor for the file and one zone for the file based on the determined utilization factor. The file is written to the determined zone.

The invention provides a highly reliable method and method for updating DNS data. The method comprises the following steps: monitoring a DNS authority analysis database, judging whether DNS data requires to update, and sending update data to each sub-node; monitoring DNS data of each sub-node and checking the consistency; if the DNS data of each sub-node is inconsistent, generating all data in the DNS authority analysis database into zone files with standard format, and sending the generated data to each sub-node. The system comprises a DNS authority analysis database monitoring module, a node DNS data monitoring module, an operation control module, a DNS data full generation module and a DNS data increment update module. According to the invention, DNS data update validation time and DNS update data consistency are guaranteed by combining full data generation and increment data update.

The present invention provides a new and improved domain name searching method and system which comprises steps selected from the group consisting of (1) downloading all zone files, public and / or non-public, associated with one or more host names; (2) performing reverse DNS on IPs associated with said host names in associated root servers and name servers; (3) crawling websites associated with said host names and seeking new hosts on known websites in different TLDs; (4) indexing all new host names found; (5) resolving the associated IP address with each host name, and with optionally appending “www” thereby; (6) storing DNS entries and indexing same while logging their association with host names; (7) repeating any of steps (1) through (6) one or more times.

A system and method to deflect DNS inquires to a new IP address for a website prior to or after the occurrence of a natural disaster that damages the computer infrastructure of an organization, thereby interrupting the organization's ability to continue to offer its website information. An automated process is included that alters a zone file on a controlling DNS server in a manner that provides a minimum of disruption to resolver programs attempting to resolve names of deflected computers via Internet DNS. An intelligent monitor program continually, but periodically, surveys the organization's web server to confirm its operations status and intervenes in the DNS resolution structure for that web server in the event that a sustained disruption occurs.

The invention relates to the technical field of domain name systems, and discloses a blockchain-based domain name resolution data management method, system and storage system. The management method includes the following steps: collecting domain name data; generating a zone file of domain name resolution data corresponding to the domain name data; storing the zone file; comparing a value of the zone file with a target value in a blockchain database, and if the value is consistent with the target value, merging the zone file into the blockchain database. According to the scheme of the invention, the zone file of the domain name resolution data is generated, the domain name resolution data is stored and managed in the form of a blockchain, so that the domain name resolution data can be prevented from being tampered with, a decentralized domain name resolution data storage system based on a blockchain technology can be realized, and the anti-attack capability of a domain name system can be enhanced.

A system and method for broadcasting messages to selected websites in order to provide emergency information to the U.S. populace, or zone applicable populace, from a central authority. This is achieved by implementing a “partial deflection” of a website altering the applicable zone file on a DNS server having authority over a website. Depending up which authority makes a request for broadcasting an emergency message, an emergency website is created and a partial deflection of the original entity's page is deflected to a main frame accompanying a header frame displaying the emergency alert message the emergency alert webpage. The requesting authority retains control over the content of the emergency message and can trigger the implementation of the broadcast from a variety of signal interfaces.

The invention discloses a file security method in a limited area based on position information, which aims at safe communication in a certain area. A file security system in the limited area based on the position information is established at first, wherein the file security system is composed of user hosts, a safety management host and a global positioning system, the safety management host is equipped with a file privilege management program, and each user host is provided with a position information module and a file privilege service program. The security method comprises that the safety management host generates a private key for the user host; a sending part encrypts a message, and a position private key is generated according to a safety area limited by the message; the safety management host determines data validity of a position private key of a receiving part to verify whether the receiving part is in the safety area; and the receiving part decrypts the message in the limited area. The file security method controls the private area via double authentication means including user password and geographical position, and is suitable for secret places as secret conferences and secret rooms.

A domain name server includes a zone file containing partitioning rules that define the partitioning of all subfolders of this domain into subzones. The DNS data of each of these subzones is hosted by a partition server that is able to obtain from the zone file information for identifying the partition server able to respond to a query sent by a client to obtain a DNS folder.

The invention relates to a DNS zone file multi-node transmission method and system. A DNS zone file segmentation module and a slave server management module are added to a master server. The method includes the steps: (1) a plurality of authority servers including the master server and a plurality of slave servers are deployed in a DNS system, the master server periodically produces DNS zone files and sends the DNS zone files to the slave servers; (2) after the DNS zone files are segmented on the master server, file subblocks are numbered, and a slave server list is generated according to register information on the master server; (3) the master server sends a zone file update command to the slave servers in the slave server list and meanwhile sends the slave server list to the slave servers; (4) the slave servers pick neighbor nodes after receiving the update command and load the multi-node file subblocks after the neighbor nodes are selected to complete transmission of the DNS zone files.

A domain name management system allows agents to manage plural domains for plural registrants. The system resides on a server of an accredited registrar or on a server of a partner website that can directly access the shared registry system. A variety of DNS or zone file information can be altered using simple graphical user interfaces to enter change information and pass that change information to the domain manager server. The domain name management system passes the change information to the DNS servers either directly through the SRS or through an accredited server that passes the change information through the SRS and to the root servers. Most preferably, the domain manager has substantially direct access to the shared registry system, which asynchronously updates the DNS servers.

The invention relates to a self-adaptive DNS zone file transmission method and system based on network coding. Four modules are added to an existing DNS main server, namely a link situation monitoring module, a zone file segmentation module, a coding coefficient generation module and a zone file recoding module, and a zone file decoding module is added to a DNS secondary server. The self-adaptive DNS zone file transmission method comprises the following steps: firstly, an original DNS zone file is segmented into a plurality of file sub-data blocks on the DNS main server, and the link situations between the main server and the secondary server are detected in real time to obtain detection index data; secondly, file sub-blocks are coded in a finite field, and a coding coefficient is selected to configure and form an M*N coding coefficient matrix; thirdly, P lines are drawn at random from the coding coefficient matrix according to the detection index data, so that a P*N matrix are obtained, and N<=P <=M; fourthly, the coding coefficient is attached to P coded data blocks and is transmitted to the DNS secondary server; after N different data blocks are received from the server, coding is carried out on a zone file to obtain an integrally transmitted zone file.

The invention discloses a high-throughput data analyzing method. For processing of high-throughput sequencing offline data, the high-throughput data analyzing method comprises the following steps: partitioning offline data; generating a plurality of front data slice files after the offline data are partitioned, and combining a plurality of generated comparison result slice files into a comparison result file after all comparisons with a reference genome are finished; pre-specifying one zone file, and partitioning the zone file into a plurality of specified zone sub-files; extracting data from the comparison result file according to the plurality of specified zone sub-files, partitioning the extracted data once again to generate a plurality of back data slice files, and processing the plurality of back data slice files in a subsequent step. For operation processing of a plurality of data slices obtained after partitioning, computing resources including computing nodes, a corresponding CPU (Central Processing Unit) and a corresponding memory are allocated by a cluster management tool.

The invention discloses a method and a system for optimizing DNS (Domain Name Server) root service access. The system comprises a recursive resolver, a root zone data register and a root zone file analyzer, wherein the recursive resolver is responsible for analyzing and querying DNS data. The method comprises the following steps of firstly checking whether the set cache of the recursive resolver is provided with a corresponding resource record RR, if yes, feeding a query result back, otherwise checking in the data cache of the root zone data register, and feeding the query result back if a result is found, otherwise querying in a root name serverand feeding back, carrying out DNSSEC (Domain Name System Security Extensions) verification on the query result of a DNSSEC query, and storing relevant data to the root zone data register after verification is passed; and the root zone file analyzer is responsible for analyzing whether a root zone file is updated, if yes, informing the root zone data register to clear the cached data. The method and the system can solve a problem of too long access time of the root server and cannot destroy the existing root name resolution mechanism potentially.

The invention provides a writing balancing method of a phase change memory. The method comprises the following steps of: dividing a high-capacity phase change memory system into a plurality of memory regions, wherein each region comprises a plurality of memory arrays, each array comprises a plurality of memory rows, and each memory row is composed of a plurality of bytes and located in the same region; storing file data by a striping method to increase a mapping discretization degree of data address mapping; performing writing balancing via a neighbored copying algorithm in the array, namely maintaining a blank row pointer, and copying the data of an upper line neighboring to the pointer into the position directed by the pointer, thereby realizing the writing balance of the two memory rows; mapping the blank rows of all the arrays to a special array via an interlaced mapping mode so as to improve the discretization degree of the special array. The method can increase the discretization degree of the data address mapping, and can resist the malicious attack of repeatedly writing the same memory unit more effectively so as to realize the writing balance of the whole memory system, thereby prolonging the service life and increasing the utilization rate of the memory system.

A method for alerting Internet content providers of the age or other personal information of a computer user, which includes receiving a reverse DNS lookup query from an Internet content provider; and providing the age information of the computer user, in addition to a host name, from a reverse map zone file in response to the request. The personal information may be used by the content provider to select appropriate content for the requesting host, for example for complying with content restrictions. A system of alerting an Internet content provider of the age or other personal information of a computer user is also provided.

The invention provides a Linux ransomware virus prevention system and method, and the system comprises: a trapping module which is used for monitoring a honeypot region file, carrying out the detection and comparison of the file characteristics of the current honeypot region file when a process carries out the corresponding operation of the current honeypot region file, judging whether the current process is threatened or not, terminating related processes when it is confirmed that the current process is threatened, and feeding alarm information back to the front-end platform in time; the backup module is used for carrying out backup protection on the modified file in the selected area so as to recover the file attacked by the Linux ransomware virus; and the scanning module is used for scanning files suspected to be attacked by the ransomware in the selected area and feeding back a scanning result to the user. Compared with a traditional honeypot file detection method, the detection rate, the false alarm rate and the accuracy rate of the method provided by the invention prove that the method can accurately detect encrypted ransomware.

A system and method to deflect DNS inquires to a new IP address for a website prior to or after the occurrence of a natural disaster that damages the computer infrastructure of an organization, thereby interrupting the organization's ability to continue to offer its website information. An automated process is included that alters a zone file on a controlling DNS server in a manner that provides a minimum of disruption to resolver programs attempting to resolve names of deflected computers via Internet DNS. An intelligent monitor program continually, but periodically, surveys the organization's web server to confirm its operations status and intervenes in the DNS resolution structure for that web server in the event that a sustained disruption occurs.

Disclosed are a file update system of a mobile communication terminal which is capable of recovering Same Owner ID Error caused by damage of a file header in an EFS (Embedded File System) area of the mobile communication terminal, a boot management system of a mobile communication terminal which is capable of preventing a fatal error caused by damage of a file header in an EFS area of the mobile communication terminal, a method of updating a file in the mobile communication terminal, and a method of booting the mobile communication terminal which is capable of preventing a fatal error caused by damage of a file header in an EFS area of the mobile communication terminal.

The invention discloses a domain name multiline intelligent analyzing method based on a radix tree. According to the method, through adoption of a CLASS field in a DNS protocol family and reservation of an IP set corresponding to a line by use of the radix tree, a brand new BIND9 intelligent analysis scheme is realized. In the novel scheme, each domain name only requires configuration of one zone file and is compatible with old configuration, the IP address of the line can be dynamically increased and decreased, the defect brought about by use of intelligent analysis when bind9 carries big data is well solved, the intelligent analysis is supported under the condition that neither views nor zone files are increased, compatibility with old data is realized, hardware requirements and operation and maintenance technological requirements can be reduced, and the overall system performance is improved.

The invention provides a DNSSEC signature method and a system of the method. The DNSSEC signature method comprises the following steps: a user obtains initial resource records from a zone file database and sends the initial resource records to a first node in a master server; the first node of the master server receives and issues the initial resource records to a key management module; the key management module communicates with a hardware encryption signature module through a first interface, performs encryption signature to the initial resource records in the hardware encryption module, and sends the encrypted and signed resource records to a second node; the second node sends the encrypted and signed resource records to each authoritative DNS (Domain Name Server); a recursive server inquires and verifies the encrypted and signed resource records; data information in the master server and a slave server is kept to be identical; when the service in the master server is unavailable, the service in the slave server is initiated; dynamic monitoring and intelligent switching between the master server and the slaver server are performed to ensure continuity and integrity of the DNSSEC data.

A system and method to issue a text alert message in response to a website deflection. DNS inquires for a website resource may be deflected to a new IP address for a website prior to or after the occurrence of a natural disaster, emergency event, attack, or other event that damages the computer infrastructure of an organization or causes interruption in website administration, thereby interrupting the organization's ability to continue to offer or update its website information. Alternatively, the system can be used to issue marketing alerts in response to a website deflection. The text alert may be issued responsive to deflection or responsive to an automated process that alters a zone file on a controlling DNS server.

The invention discloses a safe and reliable DNS (Domain Name System) zone file information issuing updating method and system, belonging to the computer network technical field. The method comprises the following steps that: a main node regularly extracts a batch of data from an authoritative analytic database; after preprocessing, the update information of the zone file is delivered to a message server in the form of a message; the message server issues the update information of the zone file to each sub-node orderly and separately and simultaneously keeps the same in the database; and after all the sub-nodes confirm completion of updating, the message is deleted from the database. The system comprises a main node, a plurality of sub-nodes and a message server cluster; the message server cluster is in communication connection with the main node and the sub-nodes through the network, respectively. Compared with the prior art, the method and the system provided by the invention are capable of ensuring the succession and correction of update issuing of the zone file and have high controllability.