US 12,341,777 B2
Provisioning of encrypted DNS services
Tirumaleswar Reddy Konda, Bangalore (IN); Shashank Jain, Bangalore (IN); Himanshu Srivastava, Bangalore (IN); Naveen Kumar Reddy Kandadi, Bangalore (IN); and Piyush Pramod Joshi, Aurangabad (IN)
Assigned to McAfee, LLC, San Jose, CA (US)
Filed by McAfee, LLC, San Jose, CA (US)
Filed on Jan. 22, 2024, as Appl. No. 18/419,313.
Application 18/419,313 is a continuation of application No. 17/894,898, filed on Aug. 24, 2022, granted, now 11,881,938.
Application 17/894,898 is a continuation of application No. 16/788,046, filed on Feb. 11, 2020, granted, now 11,444,944, issued on Sep. 13, 2022.
Prior Publication US 2024/0205221 A1, Jun. 20, 2024
Int. Cl. G06F 7/04 (2006.01); G16Y 30/10 (2020.01); H04L 9/40 (2022.01); H04L 61/4511 (2022.01); H04L 101/663 (2022.01)
CPC H04L 63/0876 (2013.01) [G16Y 30/10 (2020.01); H04L 61/4511 (2022.05); H04L 63/0823 (2013.01); H04L 63/083 (2013.01); H04L 63/166 (2013.01); H04L 2101/663 (2022.05)] 20 Claims
OG exemplary drawing
 
1. A method of an endpoint device accessing a trusted domain name system (DNS) server, comprising:
provisioning to the endpoint device a client identity certificate for the endpoint device and a server certificate for the trusted DNS server;
connecting to an untrusted wireless access point (WAP);
using a DNS resolver of the untrusted WAP to resolve an address for the trusted DNS server;
creating a local proxy to the trusted DNS server, comprising authenticating the trusted DNS server via the client identity certificate and the server certificate; and
tunneling DNS traffic of the endpoint device to the trusted DNS server via the local proxy.