Akamai Technologies, Inc.
Secure request authentication for a threat protection service

Abstract:

The technique herein provides for a client application to manage a resolver configuration and send DNS requests to a threat protection service when a mobile device operating the client application is operating off-network. The client application is configured to detect network conditions and automatically configure an appropriate system-wide DNS resolution setting for various operating. Preferably, DNS requests from the client identify the customer and the device to threat protection (TP) service resolvers without introducing a publicly-visible customer or device identifier to the DNS requests or responses. The TP system then applies the correct policy to DNS requests coming from off-network clients. In particular, the TP resolver recognizes the customer for requests coming for off net clients and apply the customer's policy to such request. The resolver is also configured to log the customer and the device associated with requests from the TP off-net client. Preferably, request logs from the TP resolver are provided to a cloud security intelligence platform for threat intelligence analytics and customer visible reporting.