[go: up one dir, main page]

CN115277636B - A generic domain name resolution method and system - Google Patents

A generic domain name resolution method and system Download PDF

Info

Publication number
CN115277636B
CN115277636B CN202211117605.XA CN202211117605A CN115277636B CN 115277636 B CN115277636 B CN 115277636B CN 202211117605 A CN202211117605 A CN 202211117605A CN 115277636 B CN115277636 B CN 115277636B
Authority
CN
China
Prior art keywords
sub
domain name
resolution
list
domain
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202211117605.XA
Other languages
Chinese (zh)
Other versions
CN115277636A (en
Inventor
宁剑
沈传宝
肖达
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
University of Chinese Academy of Sciences
Original Assignee
University of Chinese Academy of Sciences
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by University of Chinese Academy of Sciences filed Critical University of Chinese Academy of Sciences
Priority to CN202211117605.XA priority Critical patent/CN115277636B/en
Publication of CN115277636A publication Critical patent/CN115277636A/en
Application granted granted Critical
Publication of CN115277636B publication Critical patent/CN115277636B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Stored Programmes (AREA)

Abstract

The embodiment of the application discloses a method and a system for resolving a generic domain name, which are applied to the technical field of computers. The method comprises the following steps: acquiring a sub domain name list and sub domain name information of each sub domain name; traversing all the sub-domain names, and judging whether the sub-domain names with the same resolution record exist in the sub-domain name list according to the resolution record of the sub-domain name to be traversed; if so, judging whether the sub domain names with the same survival time value exist in the sub domain name list according to the survival time value of the sub domain name to be traversed; if yes, determining whether the response similarity condition is met according to the response similarity of the sub-domain name to be traversed in the sub-domain name list, and if yes, adding the sub-domain name to be traversed into a non-generalized resolution list; and outputting a non-generic resolution list until all the sub-domain names in the sub-domain name list are processed. Whether a domain name is resolved through flooding can be determined efficiently and concisely.

Description

一种泛域名解析方法和系统A generic domain name resolution method and system

技术领域technical field

本申请实施例涉及计算机技术领域,具体涉及一种泛域名解析方法和系统。The embodiment of the present application relates to the field of computer technology, and in particular to a generic domain name resolution method and system.

背景技术Background technique

决策树是一种基于if-then-else规则的有监督学习算法,通过决策树的这些规则训练,可以处理毫不相关的特征,同时处理不同类型的数据,从而得到更加符合标准的数据。响应度相似对比,是通过对比两个页面的词组、字符、HTML结构和样式,得到这两个页面的相似度。Decision tree is a supervised learning algorithm based on if-then-else rules. Through the training of these rules of decision tree, it can process irrelevant features and process different types of data at the same time, so as to obtain more standard data. Responsive similarity comparison is to obtain the similarity between the two pages by comparing the phrases, characters, HTML structure and style of the two pages.

现有技术只是简单的通过枚举来确定域名是否为泛解析而来的,效率太低且无法枚举完所有的子域名。还有通过记录泛解析IP保存为黑名单的方法会出现大量误报。例如一个存在的域名解析到了一个已经被标记为黑名单的IP上,就会造成误报。The prior art simply determines whether the domain name is pan-analyzed through enumeration, which is too inefficient and cannot enumerate all subdomain names. There is also a method of saving the IP as a blacklist by recording the pan-analysis, and there will be a large number of false positives. For example, if an existing domain name is resolved to an IP that has been marked as blacklisted, it will cause false positives.

发明内容Contents of the invention

为此,本申请实施例提供一种泛域名解析方法和系统,高效且简洁的判断一个域名是否是通过泛解析而来。To this end, the embodiments of the present application provide a generic domain name resolution method and system, which efficiently and concisely determine whether a domain name is obtained through generic resolution.

为了实现上述目的,本申请实施例提供如下技术方案:In order to achieve the above purpose, the embodiment of the present application provides the following technical solutions:

根据本申请实施例的第一方面,提供了一种泛域名解析方法,所述方法包括:According to the first aspect of the embodiments of the present application, a generic domain name resolution method is provided, the method comprising:

获取子域名列表和每个子域名的子域名信息;所述子域名信息包括解析记录和生存时间值;Obtain a list of subdomain names and subdomain information of each subdomain name; the subdomain information includes resolution records and survival time values;

遍历所有子域名,根据待遍历的子域名的解析记录判断所述子域名列表中是否有相同解析记录的子域名;若没有,则将所述待遍历的子域名加入非泛解析列表;Traversing all sub-domain names, judging whether there is a sub-domain name with the same resolution record in the sub-domain name list according to the resolution records of the sub-domain names to be traversed; if not, adding the sub-domain names to be traversed to the non-panic resolution list;

若有,则根据待遍历的子域名的生存时间值判断所述子域名列表中是否有相同生存时间值的子域名;若没有,则将所述待遍历的子域名加入所述非泛解析列表;If there is, then judge whether there is a subdomain name with the same lifetime value in the subdomain name list according to the survival time value of the subdomain name to be traversed; if not, then add the subdomain name to be traversed to the non-pan resolution list ;

若有,则根据待遍历的子域名在所述子域名列表中的响应相似度确定是否符合响应相似度条件,若符合,则将所述待遍历的子域名加入所述非泛解析列表;If so, determine whether the response similarity condition is met according to the response similarity of the subdomain name to be traversed in the subdomain name list, and if so, add the subdomain name to be traversed to the non-pan resolution list;

直至所述子域名列表中的所有子域名均处理后,将所述非泛解析列表输出。After all the subdomain names in the subdomain name list are processed, the non-panic resolution list is output.

可选地,所述根据待遍历的子域名在所述子域名列表中的响应相似度确定是否符合响应相似度条件,若符合,则将所述待遍历的子域名加入所述非泛解析列表,包括:Optionally, according to the response similarity of the subdomain name to be traversed in the subdomain name list, it is determined whether the response similarity condition is met, and if so, adding the subdomain name to be traversed to the non-pan resolution list ,include:

针对所述非泛解析列表中每个子域名进行相似度计算,确定每个子域名与所述非泛解析列表中的其余子域名的相似度;Carry out similarity calculation for each subdomain name in the non-pan resolution list, and determine the similarity between each sub domain name and the remaining sub domain names in the non-pan resolution list;

将所述非泛解析列表中的相似度低于设定阈值的子域名加入最终的非泛解析列表中并输出。Adding the sub-domain names in the non-panic resolution list whose similarity is lower than the set threshold to the final non-panic resolution list and outputting it.

可选地,在所述获取子域名列表和每个子域名的子域名信息之前,所述方法包括:Optionally, before the acquisition of the subdomain name list and the subdomain name information of each subdomain name, the method includes:

获取子域名的根域名;Get the root domain name of the subdomain name;

根据所述根域名判断是否存在泛解析行为,若存在,则进行下一步的获取子域名列表和每个子域名的子域名信息;若不存在,则结束所述根域名的筛选。According to the root domain name, it is judged whether there is a pan-analysis behavior. If it exists, the next step is to obtain the sub-domain name list and the sub-domain name information of each sub-domain name; if it does not exist, the screening of the root domain name is ended.

可选地,所述子域名的解析记录包括子域名以及对应的根域名、子域名解析数据和解析次数、子域名首次解析时间和最后一次解析时间。Optionally, the resolution record of the subdomain name includes the subdomain name and the corresponding root domain name, subdomain resolution data and resolution times, the first resolution time and the last resolution time of the subdomain name.

根据本申请实施例的第二方面,提供了一种泛域名解析系统,所述系统包括:According to the second aspect of the embodiment of the present application, a generic domain name resolution system is provided, the system includes:

信息获取模块,用于获取子域名列表和每个子域名的子域名信息;所述子域名信息包括解析记录和生存时间值;An information acquisition module, configured to acquire a list of subdomain names and subdomain information of each subdomain name; the subdomain information includes resolution records and time-to-live values;

第一判断模块,用于遍历所有子域名,根据待遍历的子域名的解析记录判断所述子域名列表中是否有相同解析记录的子域名;若没有,则将所述待遍历的子域名加入非泛解析列表;The first judging module is used for traversing all sub-domain names, and judging whether there is a sub-domain name with the same resolution record in the sub-domain name list according to the resolution records of the sub-domain names to be traversed; if not, adding the sub-domain names to be traversed Non-pan parsed list;

第二判断模块,用于若有,则根据待遍历的子域名的生存时间值判断所述子域名列表中是否有相同生存时间值的子域名;若没有,则将所述待遍历的子域名加入所述非泛解析列表;The second judging module is used to judge whether there is a sub-domain name with the same survival time value in the sub-domain name list according to the survival time value of the sub-domain name to be traversed; if not, then the sub-domain name to be traversed Add the non-pan analysis list;

第三判断模块,用于若有,则根据待遍历的子域名在所述子域名列表中的响应相似度确定是否符合响应相似度条件,若符合,则将所述待遍历的子域名加入所述非泛解析列表;The third judging module is used to determine whether the response similarity condition is met according to the response similarity of the subdomain name to be traversed in the subdomain name list, if yes, to add the subdomain name to be traversed to all Describe the non-pan analysis list;

输出模块,用于直至所述子域名列表中的所有子域名均处理后,将所述非泛解析列表输出。The output module is configured to output the non-panic resolution list until all the subdomain names in the subdomain name list are processed.

可选地,所述第三判断模块,具体用于:Optionally, the third judging module is specifically used for:

针对所述非泛解析列表中每个子域名进行相似度计算,确定每个子域名与所述非泛解析列表中的其余子域名的相似度;Carry out similarity calculation for each subdomain name in the non-pan resolution list, and determine the similarity between each sub domain name and the remaining sub domain names in the non-pan resolution list;

将所述非泛解析列表中的相似度低于设定阈值的子域名加入最终的非泛解析列表中并输出。Adding the sub-domain names in the non-panic resolution list whose similarity is lower than the set threshold to the final non-panic resolution list and outputting it.

可选地,所述系统还包括:Optionally, the system also includes:

所述信息获取模块,还用于获取子域名的根域名;The information obtaining module is also used to obtain the root domain name of the subdomain name;

根据所述根域名判断是否存在泛解析行为,若存在,则进行下一步的获取子域名列表和每个子域名的子域名信息;若不存在,则结束所述根域名的筛选。According to the root domain name, it is judged whether there is a pan-analysis behavior. If it exists, the next step is to obtain the sub-domain name list and the sub-domain name information of each sub-domain name; if it does not exist, the screening of the root domain name is ended.

可选地,所述子域名的解析记录包括子域名以及对应的根域名、子域名解析数据和解析次数、子域名首次解析时间和最后一次解析时间。Optionally, the resolution record of the subdomain name includes the subdomain name and the corresponding root domain name, subdomain resolution data and resolution times, the first resolution time and the last resolution time of the subdomain name.

根据本申请实施例的第三方面,提供了一种电子设备,包括:存储器、处理器及存储在所述存储器上并可在所述处理器上运行的计算机程序,所述处理器运行所述计算机程序时执行以实现上述第一方面所述的方法。According to a third aspect of the embodiments of the present application, there is provided an electronic device, including: a memory, a processor, and a computer program stored in the memory and operable on the processor, and the processor runs the The computer program is executed to implement the method described in the first aspect above.

根据本申请实施例的第四方面,提供了一种计算机可读存储介质,其上存储有计算机可读指令,所述计算机可读指令可被处理器执行以实现上述第一方面所述的方法。According to a fourth aspect of the embodiments of the present application, there is provided a computer-readable storage medium, on which computer-readable instructions are stored, and the computer-readable instructions can be executed by a processor to implement the method described in the above-mentioned first aspect .

综上所述,本申请实施例提供了一种泛域名解析方法和系统,通过获取子域名列表和每个子域名的子域名信息;所述子域名信息包括解析记录和生存时间值;遍历所有子域名,根据待遍历的子域名的解析记录判断所述子域名列表中是否有相同解析记录的子域名;若没有,则将所述待遍历的子域名加入非泛解析列表;若有,则根据待遍历的子域名的生存时间值判断所述子域名列表中是否有相同生存时间值的子域名;若没有,则将所述待遍历的子域名加入非泛解析列表;若有,则根据待遍历的子域名在所述子域名列表中的响应相似度确定是否符合响应相似度条件,若符合,则将所述待遍历的子域名加入非泛解析列表;直至所述子域名列表中的所有子域名均处理后,将非泛解析列表输出。高效且简洁的判断一个域名是否是通过泛解析而来。To sum up, the embodiment of the present application provides a pan-domain name resolution method and system, by obtaining the sub-domain name list and the sub-domain name information of each sub-domain name; the sub-domain name information includes resolution records and lifetime values; traversing all sub-domain domain name, judge whether there is a subdomain name with the same resolution record in the subdomain name list according to the resolution record of the subdomain name to be traversed; if not, add the subdomain name to be traversed to the non-panic resolution list; The survival time value of the subdomain name to be traversed determines whether there is a subdomain name with the same survival time value in the subdomain name list; if not, then the subdomain name to be traversed is added to the non-pan resolution list; Determine whether the response similarity of the traversed sub-domain name in the sub-domain name list meets the response similarity condition, if so, add the sub-domain name to be traversed to the non-pan resolution list; until all the sub-domain names in the sub-domain name list After the subdomain names are all processed, the non-pan resolution list will be output. Efficiently and concisely determine whether a domain name is obtained through universal analysis.

附图说明Description of drawings

为了更清楚地说明本发明的实施方式或现有技术中的技术方案,下面将对实施方式或现有技术描述中所需要使用的附图作简单地介绍。显而易见地,下面描述中的附图仅仅是示例性的,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据提供的附图引伸获得其它的实施附图。In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the following will briefly introduce the accompanying drawings that are required in the description of the embodiments or the prior art. Apparently, the drawings in the following description are only exemplary, and those skilled in the art can also obtain other implementation drawings according to the provided drawings without creative work.

本说明书所绘示的结构、比例、大小等,均仅用以配合说明书所揭示的内容,以供熟悉此技术的人士了解与阅读,并非用以限定本发明可实施的限定条件,故不具技术上的实质意义,任何结构的修饰、比例关系的改变或大小的调整,在不影响本发明所能产生的功效及所能达成的目的下,均应仍落在本发明所揭示的技术内容能涵盖的范围内。The structures, proportions, sizes, etc. shown in this manual are only used to cooperate with the content disclosed in the manual, so that people familiar with this technology can understand and read, and are not used to limit the conditions for the implementation of the present invention, so there is no technical In the substantive meaning above, any modification of structure, change of proportional relationship or adjustment of size should still fall within the scope of the technical contents disclosed in the present invention without affecting the effects and goals that can be achieved by the present invention. within the scope covered.

图1为本申请实施例提供的一种泛域名解析方法流程示意图;Fig. 1 is a schematic flow chart of a generic domain name resolution method provided by the embodiment of the present application;

图2为本申请实施例提供的泛域名解析流程图;Fig. 2 is the flow chart of pan-domain name analysis provided by the embodiment of the present application;

图3为本申请实施例提供的一种泛域名解析系统框图;FIG. 3 is a block diagram of a generic domain name resolution system provided by an embodiment of the present application;

图4示出了本申请实施例提供的一种电子设备的结构示意图;FIG. 4 shows a schematic structural diagram of an electronic device provided by an embodiment of the present application;

图5示出了本申请实施例提供的一种计算机可读存储介质的示意图。Fig. 5 shows a schematic diagram of a computer-readable storage medium provided by an embodiment of the present application.

具体实施方式Detailed ways

以下由特定的具体实施例说明本发明的实施方式,熟悉此技术的人士可由本说明书所揭露的内容轻易地了解本发明的其他优点及功效,显然,所描述的实施例是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The implementation mode of the present invention is illustrated by specific specific examples below, and those who are familiar with this technology can easily understand other advantages and effects of the present invention from the contents disclosed in this description. Obviously, the described embodiments are a part of the present invention. , but not all examples. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

图1示出了本申请实施例提供的泛域名解析方法,所述方法包括:Fig. 1 shows the generic domain name resolution method provided by the embodiment of the present application, the method includes:

步骤S101:获取子域名列表和每个子域名的子域名信息;所述子域名信息包括解析记录和生存时间值;Step S101: Obtain the subdomain name list and the subdomain name information of each subdomain name; the subdomain name information includes resolution records and survival time values;

步骤S102:遍历所有子域名,根据待遍历的子域名的解析记录判断所述子域名列表中是否有相同解析记录的子域名;若没有,则将所述待遍历的子域名加入非泛解析列表;Step S102: traverse all subdomain names, judge whether there is a subdomain name with the same resolution record in the subdomain name list according to the resolution record of the subdomain name to be traversed; if not, add the subdomain name to be traversed into the non-panic resolution list ;

步骤S103:若有,则根据待遍历的子域名的生存时间值判断所述子域名列表中是否有相同生存时间值的子域名;若没有,则将所述待遍历的子域名加入所述非泛解析列表;Step S103: If there is, judge whether there is a subdomain name with the same lifetime value in the subdomain name list according to the lifetime value of the subdomain name to be traversed; if not, add the subdomain name to be traversed to the non- Pan analysis list;

步骤S104:若有,则根据待遍历的子域名在所述子域名列表中的响应相似度确定是否符合响应相似度条件,若符合,则将所述待遍历的子域名加入所述非泛解析列表;Step S104: If yes, determine whether the response similarity condition of the subdomain name to be traversed in the subdomain name list meets the response similarity condition, and if so, add the subdomain name to be traversed to the non-panic analysis list;

步骤S105:直至所述子域名列表中的所有子域名均处理后,将所述非泛解析列表输出。Step S105: until all subdomain names in the subdomain name list are processed, output the non-panic resolution list.

在一种可能的实施方式中,在步骤S104中,所述根据待遍历的子域名在所述子域名列表中的响应相似度确定是否符合响应相似度条件,若符合,则将所述待遍历的子域名加入所述非泛解析列表,包括:In a possible implementation, in step S104, according to the response similarity of the subdomain name to be traversed in the subdomain name list, it is determined whether the response similarity condition is met, and if so, the to-be-traversed Add the non-pan resolution list of subdomain names, including:

针对所述非泛解析列表中每个子域名进行相似度计算,确定每个子域名与所述非泛解析列表中的其余子域名的相似度;将所述非泛解析列表中的相似度低于设定阈值的子域名加入最终的非泛解析列表中并输出。Carry out similarity calculation for each sub-domain name in the non-pan resolution list, determine the similarity between each sub-domain name and the remaining sub-domain names in the non-pan resolution list; Add the subdomain names with a certain threshold to the final non-pan resolution list and output it.

在一种可能的实施方式中,在步骤S101所述获取子域名列表和每个子域名的子域名信息之前,所述方法包括:In a possible implementation manner, before obtaining the subdomain name list and the subdomain name information of each subdomain name in step S101, the method includes:

获取子域名的根域名;根据所述根域名判断是否存在泛解析行为,若存在,则进行下一步的获取子域名列表和每个子域名的子域名信息;若不存在,则结束所述根域名的筛选。Obtain the root domain name of the sub-domain name; judge whether there is a pan-analysis behavior according to the root domain name, if it exists, proceed to the next step to obtain the sub-domain name list and the sub-domain name information of each sub-domain name; if not, end the root domain name filter.

在一种可能的实施方式中,所述子域名的解析记录包括子域名以及对应的根域名、子域名解析数据和解析次数、子域名首次解析时间和最后一次解析时间。In a possible implementation manner, the resolution record of the subdomain name includes the subdomain name and the corresponding root domain name, subdomain resolution data and resolution times, the first resolution time and the last resolution time of the subdomain name.

图2示出了本申请实施例提供的泛域名解析方法实施例示意图,所述方法包括如下步骤:FIG. 2 shows a schematic diagram of an embodiment of a generic domain name resolution method provided by the embodiment of the present application. The method includes the following steps:

步骤1:获取一份子域名列表和每个子域名的子域名信息;所述子域名信息包括解析记录和生存时间值;Step 1: Obtain a list of subdomain names and subdomain information of each subdomain name; the subdomain information includes resolution records and survival time values;

步骤2:开始遍历每一个子域名;针对每个子域名,首先根据待遍历的子域名的解析记录判断所述子域名列表中是否有相同解析记录的子域名,如果不相同,标记为非泛解析记录;如果相同,进入步骤3;Step 2: Start traversing each sub-domain name; for each sub-domain name, first judge whether there is a sub-domain name with the same resolution record in the sub-domain name list according to the resolution record of the sub-domain name to be traversed, if not, mark it as non-pan resolution Record; if the same, go to step 3;

步骤3:根据待遍历的子域名的生存时间TTL值判断所述子域名列表中是否有相同生存时间值的子域名,如果不相同,标记为非泛解析记录,如果相同,进入步骤4;Step 3: Determine whether there is a subdomain name with the same lifetime value in the subdomain name list according to the TTL value of the subdomain name to be traversed, if not, mark it as a non-pan resolution record, if the same, go to step 4;

步骤4:将所有步骤3取来的非泛解析记录,存在一份列表中;Step 4: Store all the non-pan analysis records obtained in step 3 in a list;

步骤5:通过响应相似度对比,对比列表中的所有数据,根据待遍历的子域名在所述子域名列表中的响应相似度确定是否符合响应相似度条件,并将所有相似度小于百分之八十的数据标记为非泛解析记录;Step 5: Through response similarity comparison, compare all the data in the list, determine whether the response similarity condition is met according to the response similarity of the subdomain name to be traversed in the subdomain name list, and make all similarities less than 100% Eighty data are marked as non-pan analysis records;

步骤6:统计所有被标记为非泛解析记录的数据,输出一份文档。Step 6: Count all the data marked as non-pan-parsed records, and output a document.

综上所述,本申请实施例提供一种泛域名解析方法,通过获取子域名列表和每个子域名的子域名信息;遍历所有子域名,根据待遍历的子域名的解析记录判断所述子域名列表中是否有相同解析记录的子域名;若有,则根据待遍历的子域名的生存时间值判断所述子域名列表中是否有相同生存时间值的子域名;若有,则根据待遍历的子域名在所述子域名列表中的响应相似度确定是否符合响应相似度条件,若符合,则将所述待遍历的子域名加入非泛解析列表;直至所述子域名列表中的所有子域名均处理后,将非泛解析列表输出。高效且简洁的判断一个域名是否是通过泛解析而来。To sum up, the embodiment of the present application provides a pan-domain name resolution method, by obtaining the sub-domain name list and the sub-domain name information of each sub-domain name; traversing all sub-domain names, and judging the sub-domain name according to the resolution record of the sub-domain name to be traversed Whether there is a subdomain name with the same resolution record in the list; if so, judge whether there is a subdomain name with the same survival time value in the subdomain name list according to the survival time value of the subdomain name to be traversed; Determine whether the response similarity of the subdomain name in the subdomain name list meets the response similarity condition, and if so, add the subdomain name to be traversed to the non-pan resolution list; until all subdomain names in the subdomain name list After all are processed, the non-pan-parsed list is output. Efficiently and concisely determine whether a domain name is obtained through universal analysis.

基于相同的技术构思,本申请实施例还提供了一种泛域名解析系统,如图3所示,所述系统包括:Based on the same technical idea, the embodiment of the present application also provides a generic domain name resolution system, as shown in Figure 3, the system includes:

信息获取模块301,用于获取子域名列表和每个子域名的子域名信息;所述子域名信息包括解析记录和生存时间值;An information acquisition module 301, configured to acquire a subdomain name list and subdomain information of each subdomain name; the subdomain information includes resolution records and survival time values;

第一判断模块302,用于遍历所有子域名,根据待遍历的子域名的解析记录判断所述子域名列表中是否有相同解析记录的子域名;若没有,则将所述待遍历的子域名加入非泛解析列表;The first judging module 302 is used to traverse all sub-domain names, and judge whether there is a sub-domain name with the same resolution record in the sub-domain name list according to the resolution records of the sub-domain names to be traversed; Add non-pan analysis list;

第二判断模块303,用于若有,则根据待遍历的子域名的生存时间值判断所述子域名列表中是否有相同生存时间值的子域名;若没有,则将所述待遍历的子域名加入所述非泛解析列表;The second judging module 303 is used to judge whether there is a sub-domain name with the same survival time value in the sub-domain name list according to the survival time value of the sub-domain name to be traversed; The domain name is added to the non-pan resolution list;

第三判断模块304,用于若有,则根据待遍历的子域名在所述子域名列表中的响应相似度确定是否符合响应相似度条件,若符合,则将所述待遍历的子域名加入所述非泛解析列表;The third judging module 304 is used to determine whether the response similarity condition is met according to the response similarity of the subdomain name to be traversed in the subdomain name list, if yes, to add the subdomain name to be traversed to The non-pan parse list;

输出模块305,用于直至所述子域名列表中的所有子域名均处理后,将所述非泛解析列表输出。The output module 305 is configured to output the non-panic resolution list until all the subdomain names in the subdomain name list are processed.

在一种可能的实施方式中,所述第三判断模块304,具体用于:In a possible implementation manner, the third judging module 304 is specifically configured to:

针对所述非泛解析列表中每个子域名进行相似度计算,确定每个子域名与所述非泛解析列表中的其余子域名的相似度;将所述非泛解析列表中的相似度低于设定阈值的子域名加入最终的非泛解析列表中并输出。Carry out similarity calculation for each sub-domain name in the non-pan resolution list, determine the similarity between each sub-domain name and the remaining sub-domain names in the non-pan resolution list; Add the subdomain names with a certain threshold to the final non-pan resolution list and output it.

在一种可能的实施方式中,所述系统还包括:In a possible implementation manner, the system also includes:

所述信息获取模块301,还用于获取子域名的根域名;根据所述根域名判断是否存在泛解析行为,若存在,则进行下一步的获取子域名列表和每个子域名的子域名信息;若不存在,则结束所述根域名的筛选。The information acquisition module 301 is also used to obtain the root domain name of the sub-domain name; judge whether there is a pan-analysis behavior according to the root domain name, and if so, proceed to the next step to obtain the sub-domain name list and the sub-domain name information of each sub-domain name; If it does not exist, then end the screening of the root domain name.

在一种可能的实施方式中,所述子域名的解析记录包括子域名以及对应的根域名、子域名解析数据和解析次数、子域名首次解析时间和最后一次解析时间。In a possible implementation manner, the resolution record of the subdomain name includes the subdomain name and the corresponding root domain name, subdomain resolution data and resolution times, the first resolution time and the last resolution time of the subdomain name.

本申请实施方式还提供一种与前述实施方式所提供的方法对应的电子设备20。请参考图4,其示出了本申请的一些实施方式所提供的一种电子设备20的示意图。所述电子设备20可以包括:处理器200,存储器201,总线202和通信接口203,所述处理器200、通信接口203和存储器201通过总线202连接;所述存储器201中存储有可在所述处理器200上运行的计算机程序,所述处理器200运行所述计算机程序时执行本申请前述任一实施方式所提供的方法。The embodiment of the present application also provides an electronic device 20 corresponding to the method provided in the foregoing embodiment. Please refer to FIG. 4 , which shows a schematic diagram of an electronic device 20 provided by some embodiments of the present application. The electronic device 20 may include: a processor 200, a memory 201, a bus 202 and a communication interface 203, the processor 200, the communication interface 203 and the memory 201 are connected through the bus 202; A computer program running on the processor 200, when the processor 200 runs the computer program, executes the method provided in any one of the foregoing embodiments of the present application.

其中,存储器201可能包含高速随机存取存储器(RAM:Random Access Memory),也可能还包括非不稳定的存储器(non-volatile memory),例如至少一个磁盘存储器。通过至少一个物理端口(可以是有线或者无线)实现该系统网元与至少一个其他网元之间的通信连接,可以使用互联网、广域网、本地网、城域网等。Wherein, the memory 201 may include a high-speed random access memory (RAM: Random Access Memory), and may also include a non-volatile memory (non-volatile memory), such as at least one disk memory. The communication connection between the system network element and at least one other network element is realized through at least one physical port (which may be wired or wireless), and the Internet, wide area network, local network, metropolitan area network, etc. can be used.

总线202可以是ISA总线、PCI总线或EISA总线等。所述总线可以分为地址总线、数据总线、控制总线等。其中,存储器201用于存储程序,所述处理器200在接收到执行指令后,执行所述程序,前述本申请实施例任一实施方式揭示的所述方法可以应用于处理器200中,或者由处理器200实现。The bus 202 may be an ISA bus, a PCI bus, or an EISA bus, etc. The bus can be divided into address bus, data bus, control bus and so on. Wherein, the memory 201 is used to store a program, and the processor 200 executes the program after receiving an execution instruction. The method disclosed in any implementation manner of the foregoing embodiments of the present application can be applied to the processor 200, or by The processor 200 implements.

处理器200可能是一种集成电路芯片,具有信号的处理能力。在实现过程中,上述方法的各步骤可以通过处理器200中的硬件的集成逻辑电路或者软件形式的指令完成。上述的处理器200可以是通用处理器,包括中央处理器(Central Processing Unit,简称CPU)、网络处理器(Network Processor,简称NP)等;还可以是数字信号处理器(DSP)、专用集成电路(ASIC)、现场可编程门阵列(FPGA)或者其他可编程逻辑器件、分立门或者晶体管逻辑器件、分立硬件组件。可以实现或者执行本申请实施例中的公开的各方法、步骤及逻辑框图。通用处理器可以是微处理器或者该处理器也可以是任何常规的处理器等。结合本申请实施例所公开的方法的步骤可以直接体现为硬件译码处理器执行完成,或者用译码处理器中的硬件及软件模块组合执行完成。软件模块可以位于随机存储器,闪存、只读存储器,可编程只读存储器或者电可擦写可编程存储器、寄存器等本领域成熟的存储介质中。该存储介质位于存储器201,处理器200读取存储器201中的信息,结合其硬件完成上述方法的步骤。The processor 200 may be an integrated circuit chip with signal processing capabilities. In the implementation process, each step of the above method may be implemented by an integrated logic circuit of hardware in the processor 200 or instructions in the form of software. The above-mentioned processor 200 can be a general-purpose processor, including a central processing unit (Central Processing Unit, referred to as CPU), a network processor (Network Processor, referred to as NP), etc.; it can also be a digital signal processor (DSP), an application-specific integrated circuit (ASIC), Field Programmable Gate Array (FPGA) or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components. Various methods, steps, and logic block diagrams disclosed in the embodiments of the present application may be implemented or executed. A general-purpose processor may be a microprocessor, or the processor may be any conventional processor, or the like. The steps of the method disclosed in connection with the embodiments of the present application may be directly implemented by a hardware decoding processor, or implemented by a combination of hardware and software modules in the decoding processor. The software module can be located in a mature storage medium in the field such as random access memory, flash memory, read-only memory, programmable read-only memory or electrically erasable programmable memory, register. The storage medium is located in the memory 201, and the processor 200 reads the information in the memory 201, and completes the steps of the above method in combination with its hardware.

本申请实施例提供的电子设备20与本申请实施例提供的方法出于相同的发明构思,具有与其采用、运行或实现的方法相同的有益效果。The electronic device 20 provided in the embodiment of the present application is based on the same inventive concept as the method provided in the embodiment of the present application, and has the same beneficial effect as the method adopted, operated or implemented.

本申请实施方式还提供一种与前述实施方式所提供的方法对应的计算机可读存储介质,请参考图5,其示出的计算机可读存储介质为光盘30,其上存储有计算机程序(即程序产品),所述计算机程序在被处理器运行时,会执行前述任意实施方式所提供的方法。The embodiment of the present application also provides a computer-readable storage medium corresponding to the method provided in the foregoing embodiment. Please refer to FIG. Program product), when the computer program is run by a processor, it will execute the method provided by any of the foregoing implementation manners.

需要说明的是,所述计算机可读存储介质的例子还可以包括,但不限于相变内存(PRAM)、静态随机存取存储器 (SRAM)、动态随机存取存储器 (DRAM)、其他类型的随机存取存储器 (RAM)、只读存储器 (ROM)、电可擦除可编程只读存储器 (EEPROM)、快闪记忆体或其他光学、磁性存储介质,在此不再一一赘述。It should be noted that examples of the computer-readable storage medium may also include, but are not limited to, phase change memory (PRAM), static random access memory (SRAM), dynamic random access memory (DRAM), other types of random Access memory (RAM), read only memory (ROM), electrically erasable programmable read only memory (EEPROM), flash memory or other optical and magnetic storage media will not be repeated here.

本申请的上述实施例提供的计算机可读存储介质与本申请实施例提供的方法出于相同的发明构思,具有与其存储的应用程序所采用、运行或实现的方法相同的有益效果。The computer-readable storage medium provided by the above embodiments of the present application is based on the same inventive concept as the method provided by the embodiments of the present application, and has the same beneficial effect as the method adopted, executed or implemented by the stored application program.

需要说明的是:It should be noted:

在此提供的算法和显示不与任何特定计算机、虚拟装置或者其它设备有固有相关。各种通用装置也可以与基于在此的示教一起使用。根据上面的描述,构造这类装置所要求的结构是显而易见的。此外,本申请也不针对任何特定编程语言。应当明白,可以利用各种编程语言实现在此描述的本申请的内容,并且上面对特定语言所做的描述是为了披露本申请的最佳实施方式。The algorithms and displays presented herein are not inherently related to any particular computer, virtual appliance, or other device. Various general purpose devices can also be used with the teachings based on this. The structure required to construct such an apparatus will be apparent from the foregoing description. Furthermore, this application is not directed to any particular programming language. It should be understood that various programming languages can be used to implement the content of the application described here, and the description of specific languages above is to disclose the best implementation mode of the application.

在此处所提供的说明书中,说明了大量具体细节。然而,能够理解,本申请的实施例可以在没有这些具体细节的情况下实践。在一些实例中,并未详细示出公知的方法、结构和技术,以便不模糊对本说明书的理解。In the description provided herein, numerous specific details are set forth. However, it is understood that the embodiments of the application may be practiced without these specific details. In some instances, well-known methods, structures and techniques have not been shown in detail in order not to obscure the understanding of this description.

类似地,应当理解,为了精简本申请并帮助理解各个发明方面中的一个或多个,在上面对本申请的示例性实施例的描述中,本申请的各个特征有时被一起分组到单个实施例、图、或者对其的描述中。然而,并不应将该公开的方法解释成反映如下意图:即所要求保护的本申请要求比在每个权利要求中所明确记载的特征更多的特征。更确切地说,如下面的权利要求书所反映的那样,发明方面在于少于前面公开的单个实施例的所有特征。因此,遵循具体实施方式的权利要求书由此明确地并入该具体实施方式,其中每个权利要求本身都作为本申请的单独实施例。Similarly, it should be understood that in the above description of exemplary embodiments of the application, in order to streamline the application and to facilitate understanding of one or more of the various inventive aspects, various features of the application are sometimes grouped together in a single embodiment, figure, or its description. This method of disclosure, however, is not to be interpreted as reflecting an intention that the claimed application requires more features than are expressly recited in each claim. Rather, as the following claims reflect, inventive aspects lie in less than all features of a single foregoing disclosed embodiment. Thus, the claims following this Detailed Description are hereby expressly incorporated into this Detailed Description, with each claim standing on its own as a separate embodiment of this application.

本领域技术人员可以理解,可以对实施例中的设备中的模块进行自适应性地改变并且把它们设置在与该实施例不同的一个或多个设备中。可以把实施例中的模块或单元或组件组合成一个模块或单元或组件,以及此外可以把它们分成多个子模块或子单元或子组件。除了这样的特征和/或过程或者单元中的至少一些是相互排斥之外,可以采用任何组合对本说明书(包括伴随的权利要求、摘要和附图)中公开的所有特征以及如此公开的任何方法或者设备的所有过程或单元进行组合。除非另外明确陈述,本说明书(包括伴随的权利要求、摘要和附图)中公开的每个特征可以由提供相同、等同或相似目的的替代特征来代替。Those skilled in the art can understand that the modules in the device in the embodiment can be adaptively changed and arranged in one or more devices different from the embodiment. Modules or units or components in the embodiments may be combined into one module or unit or component, and furthermore may be divided into a plurality of sub-modules or sub-units or sub-assemblies. All features disclosed in this specification (including accompanying claims, abstract and drawings) and any method or method so disclosed may be used in any combination, except that at least some of such features and/or processes or units are mutually exclusive. All processes or units of equipment are combined. Each feature disclosed in this specification (including accompanying claims, abstract and drawings) may be replaced by alternative features serving the same, equivalent or similar purpose, unless expressly stated otherwise.

此外,本领域的技术人员能够理解,尽管在此所述的一些实施例包括其它实施例中所包括的某些特征而不是其它特征,但是不同实施例的特征的组合意味着处于本申请的范围之内并且形成不同的实施例。例如,在下面的权利要求书中,所要求保护的实施例的任意之一都可以以任意的组合方式来使用。In addition, those skilled in the art will appreciate that although some embodiments described herein include some features included in other embodiments but not others, combinations of features from different embodiments are meant to be within the scope of the present application. and form different embodiments. For example, in the following claims, any of the claimed embodiments may be used in any combination.

本申请的各个部件实施例可以以硬件实现,或者以在一个或者多个处理器上运行的软件模块实现,或者以它们的组合实现。本领域的技术人员应当理解,可以在实践中使用微处理器或者数字信号处理器( DSP )来实现根据本申请实施例的虚拟机的创建装置中的一些或者全部部件的一些或者全部功能。本申请还可以实现为用于执行这里所描述的方法的一部分或者全部的设备或者装置程序(例如,计算机程序和计算机程序产品)。这样的实现本申请的程序可以存储在计算机可读介质上,或者可以具有一个或者多个信号的形式。这样的信号可以从因特网网站上下载得到,或者在载体信号上提供,或者以任何其他形式提供。The various component embodiments of the present application may be realized in hardware, or in software modules running on one or more processors, or in a combination thereof. Those skilled in the art should understand that a microprocessor or a digital signal processor (DSP) may be used in practice to implement some or all functions of some or all components in the device for creating a virtual machine according to the embodiment of the present application. The present application can also be implemented as an apparatus or apparatus program (eg, computer program and computer program product) for performing a part or all of the methods described herein. Such a program implementing the present application may be stored on a computer-readable medium, or may be in the form of one or more signals. Such a signal may be downloaded from an Internet site, or provided on a carrier signal, or provided in any other form.

应该注意的是上述实施例对本申请进行说明而不是对本申请进行限制,并且本领域技术人员在不脱离所附权利要求的范围的情况下可设计出替换实施例。在权利要求中,不应将位于括号之间的任何参考符号构造成对权利要求的限制。单词“包含”不排除存在未列在权利要求中的元件或步骤。位于元件之前的单词“一”或“一个”不排除存在多个这样的元件。本申请可以借助于包括有若干不同元件的硬件以及借助于适当编程的计算机来实现。在列举了若干装置的单元权利要求中,这些装置中的若干个可以是通过同一个硬件项来具体体现。单词第一、第二、以及第三等的使用不表示任何顺序。可将这些单词解释为名称。It should be noted that the above-mentioned embodiments illustrate rather than limit the application, and that those skilled in the art will be able to design alternative embodiments without departing from the scope of the appended claims. In the claims, any reference signs placed between parentheses shall not be construed as limiting the claim. The word "comprising" does not exclude the presence of elements or steps not listed in a claim. The word "a" or "an" preceding an element does not exclude the presence of a plurality of such elements. The application can be implemented by means of hardware comprising several distinct elements, and by means of a suitably programmed computer. In a unit claim enumerating several means, several of these means can be embodied by one and the same item of hardware. The use of the words first, second, and third, etc. does not indicate any order. These words can be interpreted as names.

以上所述,仅为本申请较佳的具体实施方式,但本申请的保护范围并不局限于此,任何熟悉本技术领域的技术人员在本申请揭露的技术范围内,可轻易想到的变化或替换,都应涵盖在本申请的保护范围之内。因此,本申请的保护范围应以所述权利要求的保护范围为准。The above is only a preferred embodiment of the present application, but the scope of protection of the present application is not limited thereto. Any person familiar with the technical field can easily conceive of changes or changes within the technical scope disclosed in this application Replacement should be covered within the protection scope of this application. Therefore, the protection scope of the present application should be determined by the protection scope of the claims.

Claims (8)

1. A method for domain name resolution in a broad domain, the method comprising:
acquiring a sub domain name list and sub domain name information of each sub domain name; the subdomain name information comprises an analysis record and a survival time value;
traversing all the sub-domain names, and judging whether the sub-domain names with the same resolution record exist in the sub-domain name list according to the resolution record of the sub-domain name to be traversed; if not, adding the subdomain name to be traversed into a non-extensive parsing list;
if so, judging whether the sub domain names with the same survival time value exist in the sub domain name list according to the survival time value of the sub domain name to be traversed; if not, adding the subdomain name to be traversed into the non-extensive parsing list;
if yes, carrying out similarity calculation on each sub-domain name in the non-extensive-resolution list, and determining the similarity between each sub-domain name and the rest sub-domain names in the non-extensive-resolution list; adding the sub-domain names with the similarity lower than a set threshold value in the non-extensive-resolution list into a final non-extensive-resolution list;
and outputting the non-generic resolution list until all the sub-domain names in the sub-domain name list are processed.
2. The method of claim 1, wherein prior to the obtaining the list of sub-domain names and sub-domain name information for each sub-domain name, the method comprises:
acquiring a root domain name of the sub domain name;
judging whether a generic resolution behavior exists according to the root domain name, and if so, performing the next step of obtaining a sub domain name list and sub domain name information of each sub domain name; and if not, ending the screening of the root domain name.
3. The method of claim 1, wherein the resolution record of the sub-domain name includes the sub-domain name and a corresponding root domain name, sub-domain name resolution data, number of times of resolution, sub-domain name first resolution time, and last resolution time.
4. A generalized domain name resolution system, the system comprising:
the information acquisition module is used for acquiring a sub domain name list and sub domain name information of each sub domain name; the subdomain name information comprises an analysis record and a survival time value;
the first judging module is used for traversing all the sub-domain names and judging whether the sub-domain names with the same analysis records exist in the sub-domain name list according to the analysis records of the sub-domain names to be traversed; if not, adding the subdomain name to be traversed into a non-extensive parsing list;
the second judging module is used for judging whether the sub domain names with the same survival time value exist in the sub domain name list according to the survival time value of the sub domain name to be traversed if the sub domain names exist; if not, adding the subdomain name to be traversed into the non-extensive parsing list;
the third judging module is used for carrying out similarity calculation on each sub-domain name in the non-extensive-resolution list if the sub-domain name exists, and determining the similarity between each sub-domain name and the rest sub-domain names in the non-extensive-resolution list; adding the sub-domain names with the similarity lower than a set threshold value in the non-extensive-resolution list into a final non-extensive-resolution list;
and the output module is used for outputting the non-generic resolution list until all the sub domain names in the sub domain name list are processed.
5. The system of claim 4, wherein the system further comprises:
the information acquisition module is also used for acquiring the root domain name of the sub domain name;
judging whether a generic resolution behavior exists according to the root domain name, and if so, performing the next step of obtaining a sub domain name list and sub domain name information of each sub domain name; and if not, ending the screening of the root domain name.
6. The system of claim 4, wherein the resolution record of the sub-domain name includes the sub-domain name and corresponding root domain name, sub-domain name resolution data, number of times of resolution, sub-domain name first resolution time, and last resolution time.
7. An electronic device, comprising: a memory, a processor and a computer program stored on the memory and executable on the processor, characterized in that the processor executes to implement the method according to any of claims 1-3 when running the computer program.
8. A computer readable storage medium having stored thereon computer readable instructions executable by a processor to implement the method of any of claims 1-3.
CN202211117605.XA 2022-09-14 2022-09-14 A generic domain name resolution method and system Active CN115277636B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202211117605.XA CN115277636B (en) 2022-09-14 2022-09-14 A generic domain name resolution method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202211117605.XA CN115277636B (en) 2022-09-14 2022-09-14 A generic domain name resolution method and system

Publications (2)

Publication Number Publication Date
CN115277636A CN115277636A (en) 2022-11-01
CN115277636B true CN115277636B (en) 2023-08-01

Family

ID=83757077

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202211117605.XA Active CN115277636B (en) 2022-09-14 2022-09-14 A generic domain name resolution method and system

Country Status (1)

Country Link
CN (1) CN115277636B (en)

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114124895A (en) * 2022-01-24 2022-03-01 中国电子信息产业集团有限公司第六研究所 Domain name data processing method, domain name description method, electronic device and storage medium

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8832283B1 (en) * 2010-09-16 2014-09-09 Google Inc. Content provided DNS resolution validation and use
EP2615772A1 (en) * 2012-01-10 2013-07-17 Thomson Licensing Method and device for timestamping data and method and device for verification of a timestamp
CN106210159B (en) * 2015-05-07 2019-12-13 阿里巴巴集团控股有限公司 Domain name resolution method and device
GB2555801A (en) * 2016-11-09 2018-05-16 F Secure Corp Identifying fraudulent and malicious websites, domain and subdomain names
CN108933846B (en) * 2018-06-21 2021-08-27 北京谷安天下科技有限公司 Method and device for identifying domain name by pan-resolution and electronic equipment
CN109040346B (en) * 2018-10-30 2021-08-13 深信服科技股份有限公司 Method, device and equipment for screening effective domain names in extensive domain name resolution
CN111200667B (en) * 2019-12-18 2021-08-10 网宿科技股份有限公司 Domain name resolution method, authoritative domain name server and local domain name server
CN112615945B (en) * 2020-12-18 2022-10-18 平安科技(深圳)有限公司 Domain name resolution record management method and device, computer equipment and storage medium
CN113286016B (en) * 2021-07-20 2021-09-28 中国人民解放军国防科技大学 A method and device for analyzing the service scope of a cached domain name system
CN113810518A (en) * 2021-09-15 2021-12-17 北京知道未来信息技术有限公司 Effective sub-domain name recognition method and device and electronic equipment

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114124895A (en) * 2022-01-24 2022-03-01 中国电子信息产业集团有限公司第六研究所 Domain name data processing method, domain name description method, electronic device and storage medium

Also Published As

Publication number Publication date
CN115277636A (en) 2022-11-01

Similar Documents

Publication Publication Date Title
CN107273269B (en) Log parsing method and device
WO2018001078A1 (en) Url matching method and device, and storage medium
WO2017028789A1 (en) Network attack detection method and device
WO2021169730A1 (en) Method and device for data processing, and storage medium
JP2019536171A (en) Web page clustering method and apparatus
CN111159709A (en) File type identification method, device, equipment and storage medium
CN110851136A (en) Data acquisition method, device, electronic device and storage medium
CN111124479A (en) Configuration file analysis method and system and electronic equipment
CN116595542A (en) Vulnerability scanning method and system
CN115277636B (en) A generic domain name resolution method and system
CN115017441A (en) An asset classification method, device, electronic device and storage medium
CN113886573B (en) Text review method, device, electronic device and storage medium
CN115221866B (en) Entity word spelling error correction method and system
CN110598115A (en) Sensitive webpage identification method and system based on artificial intelligence multi-engine
CN111897833A (en) Data processing method and device
CN117726748A (en) Methods, devices, electronic equipment and media for generating building information models
CN116107552A (en) Expression grammar analysis method, system, storage medium and electronic equipment
CN115811516A (en) Method, device, equipment and medium for concurrently reporting multi-frame files
CN112015946B (en) Video detection method, device, computing equipment and computer storage medium
CN115080815A (en) Enterprise relation visualization method and system
CN115098812A (en) Method, device and storage medium for text extraction of bidding webpage
CN114900566A (en) Data communication method, device, electronic device and medium
CN115270107B (en) Information verification method and device, readable medium and electronic equipment
CN110647568A (en) Method and device for converting graph database data into programming language data
CN120256622A (en) Text processing method, system, device and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant