Destination address control to limit unauthorized communications

Assignee

• RAYTHEON BBN TECHNOLOGIES CORP. · US

Inventors

• Daniel J. Ellard · Belmont, US
• Alden Warren Jackson · Brookline, US
• Christine Elaine Jones · Waltham, US
• Josh Karlin · Mountain View, US
• Victoria Ursula Manfredi · Cambridge, US
• David Patrick Mankins · Cambridge, US
• William Timothy Strayer · Newton, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L67/104
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Systems and methods for protecting a network including preventing data traffic from exiting the network unless a domain name request has been performed by a device attempting to transmit the data traffic. In an embodiment, a device within the protected network attempting to send data outside the protected network requests an address for a destination outside the protected network from a domain name server (DNS). In response, the DNS provides an address of the destination to the device and a gateway. In response to receiving the address, the gateway temporarily allows access to the address. In an embodiment, a DNS is coupled to a protected network and the gateway, the DNS provides an external address to a device in response to a request; and a mapping to the gateway; the gateway, coupled to a protected network and an external network, allows traffic according to the mapping.