Transient Transaction Server DNS Strategy
Abstract
A networked computer system enables a transaction to be executed securely. An initiator sends a service request to a control server. The control server creates a transaction server for the sole purpose of execution the transaction requested by the service request. Creating the transaction server includes: selecting an IP address randomly from a pool of IP addresses and assigning the selected IP address to the transaction server; creating a DNS entry including a randomly-constructed hostname; and associating the DNS entry with the selected IP address. If the transaction server pre-exists, it is made accessible in response to receiving the service request. The control server informs the initiator of the created transaction server. The initiator engages in the transaction with the transaction server, independently of the control server. The transaction server terminates upon completion of the transaction or the expiration of a timeout period.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1 . A method performed by at least one computer processor executing computer program instructions tangibly stored on at least one non-transitory computer-readable medium, the method comprising:
(A) receiving, over a network, from an initiator, a request to execute a transaction; (B) selecting a transaction server based on the request, comprising:
(B)(1) selecting an IP address randomly from a pool of IP addresses and assigning the selected IP address to the transaction server;
(B)(2) creating a DNS entry including a randomly-constructed hostname;
(B)(3) associating the DNS entry with the selected IP address; and
(C) providing the initiator with information about the transaction server.
2 . The method of claim 1 , wherein selecting the transaction server comprises selecting the transaction server from a plurality of transaction servers.
3 . The method of claim 1 , wherein selecting the transaction server comprises provisioning the transaction server.
4 . The method of claim 3 , wherein provisioning the transaction server comprises provisioning the transaction server with an SSL certificate, which allows secure communication via the hostname, installed on it.
5 . The method of claim 4 , wherein the SSL certificate comprises a wildcard SSL certificate.
6 . The method of claim 1 , wherein (B)(3) comprises storing the randomly-constructed hostname and the selected IP address in the DNS entry.
7 . The method of claim 1 , wherein (A) comprises receiving the request to execute the transaction over the network at a control server, and wherein the method further comprises:
(D) using the transaction server to execute the transaction independently of the control server.
8 . The method of claim 1 , wherein (C) comprises providing the initiator with an address of the transaction server.
9 . The method of claim 1 , wherein (B) further comprises:
(B)(4) making the transaction server addressable in response to the request.
10 . The method of claim 1 , further comprising:
(D) after (B), provisioning a new transaction server; and (E) making the new transaction server unaddressable over the network.
11 . The method of claim 1 , further comprising:
(D) in response to determining that a server termination criterion has been satisfied, terminating the transaction server.
12 . A system comprising at least one non-transitory computer-readable medium having computer program instructions stored thereon, wherein the computer program instructions are executable by at least one computer processor to perform a method, the method comprising:
(A) receiving, over a network, from an initiator, a request to execute a transaction; (B) selecting a transaction server based on the request, comprising:
(B)(1) selecting an IP address randomly from a pool of IP addresses and assigning the selected IP address to the transaction server;
(B)(2) creating a DNS entry including a randomly-constructed hostname;
(B)(3) associating the DNS entry with the selected IP address; and
(C) providing the initiator with information about the transaction server.
13 . The system of claim 12 , wherein selecting the transaction server comprises selecting the transaction server from a plurality of transaction servers.
14 . The system of claim 12 , wherein selecting the transaction server comprises provisioning the transaction server.
15 . The system of claim 14 , wherein provisioning the transaction server comprises provisioning the transaction server with an SSL certificate, which allows secure communication via the hostname, installed on it.
16 . The system of claim 15 , wherein the SSL certificate comprises a wildcard SSL certificate.
17 . The system of claim 13 , wherein (B)(3) comprises storing the randomly-constructed hostname and the selected IP address in the DNS entry.
18 . The system of claim 13 , wherein (A) comprises receiving the request to execute the transaction over the network at a control server, and wherein the method further comprises:
(D) using the transaction server to execute the transaction independently of the control server.
19 . The system of claim 13 , wherein (C) comprises providing the initiator with an address of the transaction server.
20 . The system of claim 13 , wherein (B) further comprises:
(B)(4) making the transaction server addressable in response to the request.
21 . The system of claim 13 , wherein the method further comprises:
(D) after (B), provisioning a new transaction server; and (E) making the new transaction server unaddressable over the network.
22 . The system of claim 13 , wherein the method further comprises:
(D) in response to determining that a server termination criterion has been satisfied, terminating the transaction server.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.