SYSTEMS AND METHODS FOR ZERO TRUST DNS BASED NETWORKING

Organization Name

Microsoft Technology Licensing, LLC

Inventor(s)

Alexandru Jercaianu of Redmond WA US

Thomas Alan Jensen of Redmond WA US

Ivan D. Pashov of Redmond WA US

Matthew Raymond Cox of Bothell WA US

SYSTEMS AND METHODS FOR ZERO TRUST DNS BASED NETWORKING

This abstract first appeared for US patent application 18499887 titled 'SYSTEMS AND METHODS FOR ZERO TRUST DNS BASED NETWORKING

Original Abstract Submitted

Examples of the present disclosure describe systems and methods for zero trust domain name system (DNS) (ZTDNS) based networking. A computing device implementing ZTDNS based networking blocks any outbound connections that are not included in a list of trusted IP addresses. The list of trusted IP addresses is updated in response to the computing device receiving from a trusted DNS server an IP address corresponding to a DNS request. In some examples, the ZTDNS based networking intercepts and evaluates outbound communications for applications that implement a custom application DNS client. In other examples, the ZTDNS based networking intercepts and evaluates outbound communications for virtual environments. The outbound communications for both the custom application DNS client and the virtual environments are proxied through a local DNS client of the computing device.