System and method for generating current live and test versions of DNS data for HSM changes
US11297033B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Aug 21, 2020 |
| Grant date | Apr 5, 2022 |
| Priority date | — |
| Expiry date | Aug 21, 2040 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/0823
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A system for concurrently publishing a current version of a plurality of Domain Name System (DNS) records for a zone of domain name and for storing a next version of the plurality of DNS records for the zone, the system comprising: a record selection module for obtaining registry data associated with the domain name stored in a registry database; a DNS Security (DNSSEC) signing system having a first High Security Module (HSM) of a first vendor for facilitating digital signing of the registry data to generate a first signed DNS record using a first signing key (SK1) and a second HSM of a second vendor for facilitating digital signing of the registry data to generate a second signed DNS record using a second signing key SK2, the SK1 different from the SK2; and a distribution system for coordinating concurrent generation and transmission of the current version and the next version; the distribution system and signing system cooperating to: generate the concurrent version using SK1 to include the first signed DNS record according to a first set of generation instructions and transmit in a first transmission path that bypasses storing of the current version in the registry database; and…
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.