	US 11,876,779 B2
	Secure DNS using delegated credentials and keyless SSL
Tirumaleswar Reddy Konda, Bangalore (IN); Shashank Jain, Bangalore (IN); and Himanshu Srivastava, Bangalore (IN)
Assigned to McAfee, LLC, San Jose, CA (US)
Filed by McAfee, LLC, San Jose, CA (US)
Filed on Aug. 13, 2021, as Appl. No. 17/402,271.
Claims priority of application No. 202141014288 (IN), filed on Mar. 30, 2021.
Prior Publication US 2022/0321528 A1, Oct. 6, 2022
Int. Cl. H04L 61/4511 (2022.01); H04L 67/568 (2022.01); G06F 8/65 (2018.01); H04L 9/40 (2022.01); H04L 9/30 (2006.01)

CPC H04L 63/0209 (2013.01) [H04L 9/3073 (2013.01); H04L 61/4511 (2022.05); H04L 63/04 (2013.01); H04L 63/0823 (2013.01); H04L 63/168 (2013.01); H04L 67/568 (2022.05); G06F 8/65 (2013.01)]

20 Claims

1. A gateway device, comprising:

a hardware computing platform; and

a secure domain name system (DNS) engine comprising circuitry and stored instructions to-program the circuitry, the secure DNS engine to:

communicatively couple to an endpoint via a local network;

begin a secure DNS transaction with the endpoint;

determine whether the endpoint supports delegated credentials;

after determining that the endpoint supports delegated credentials, establish a secure DNS session with the endpoint using a delegated credential; and

determine that the endpoint does not support delegated credentials, and to establish a secure DNS session with the endpoint using keyless SSL.