Abstract: A system includes a processing system of a device including one or more processors. The system also includes a memory system including one or more computer-readable media. The one or more computer-readable media contain instructions that, when executed by the processing system, cause the processing system to perform operations. The operations include reading, at a domain name system (DNS) server, top-level domain (TLD) information from a TLD list. The operations also include sizing data structures for a hash table. The operations also include loading the TLD information into the hash table. The operations also include determining whether a collision constraint is met in the hash table. The operations also include increasing a size of the data structures when the collision constraint is not met.

Abstract: Techniques for providing domain name suggestions to a user that is a prospective registrant via chatbot are disclosed. The techniques include providing a publicly available online chatbot to the user; requesting domain name generation data from the user via the chatbot and during a chatbot session with the user; receiving domain name generation data based on the requesting; generating a plurality of generated domain names using the domain name generation data; filtering registered domain names out of the plurality of generated domain names to produce a plurality of unregistered generated domain names; offering to register at least one of the unregistered generated domain names to the user; receiving an offer acceptance from the user; directing the user, via the chatbot, to provide information sufficient to register the at least one of the unregistered generated domain names; and facilitating registration of the at least one of the unregistered generated domain names.

Abstract: Systems and methods for out-of-band communications in the domain name system (DNS) are disclosed. Embodiments include a system for negotiating DNS services in the DNS. The system includes an in-band communication channel connecting a first party and a second party, and one or more out-of-band communication channels connecting the first party and the second party. The first party performs messaging for the DNS services with the second party using the in-band communication channel. Further, the first party advertises terms of the DNS service offered by the second party using the one or more out-of-band communication channels.

Abstract: Techniques for processing a voice initiated request by a web server are presented. The techniques may include receiving, by a web server, request data representing a voice command to a user device, the request data including an identification of a requested webpage; determining, by the web server, that a response to the request data will continue a voice interaction; and providing, by the web server and to the user device, data for a voice enabled webpage associated with the requested webpage, where the data for the voice enabled webpage is configured to invoke a voice interface for the user device.

Abstract: Techniques for provisioning a key server to facilitate secure communications between a web server and a client by providing the client with a first data structure including information on how the web server may obtain a target symmetric key are presented. The techniques can include: provisioning the key server with a second data structure including information on how the key server may generate the first data structure; receiving a request on behalf of a web server for a third data structure comprising information on how the client may obtain the first data structure from the key server; and obtaining the third data structure, such that the third data structure is published in association with an identification of the web server, and such that the client uses the third data structure to obtain the first data structure and uses the first data structure to communicate with the web server.

Abstract: A Domain Name System (“DNS”) package, a non-transitory computer-readable medium, and a method for providing domain name resolution services are disclosed. The system can include one or more built-in DNS hierarchy databases configured for deployment within a network, wherein the one or more built-in DNS hierarchy databases stores DNS records. The system can also include a recursive name server, wherein the recursive name server is configured to query the one or more built-in DNS hierarchy databases during domain name resolution, the recursive name server configured to select the one or more built-in DNS hierarchy databases based on a policy indicating a preference for the one or more built-in DNS hierarchy databases over a domain name server located outside of the network. Furthermore, the system can include a recursive name server database configured to store DNS records for the recursive name server.

Abstract: Systems, methods, and computer readable storage media for identifying a user session are provided. The method can include receiving a plurality of queries from a query server; providing, to the query server, a corresponding response to each query of the plurality of queries; grouping a plurality of clusters, wherein each cluster of the plurality of clusters comprises one or more queries of the plurality of queries and the corresponding response to each of the one or more queries of the plurality of queries, wherein each cluster of the plurality of clusters indicates a different user session.

Abstract: Systems and methods for out-of-band communications in the domain name system (DNS) are disclosed. Embodiments include a system for negotiating DNS services in the DNS. The system includes an in-band communication channel connecting a first party and a second party, and one or more out-of-band communication channels connecting the first party and the second party. The first party performs messaging for the DNS services with the second party using the in-band communication channel. Further, the first party advertises terms of the DNS service offered by the second party using the one or more out-of-band communication channels.

Abstract: Techniques for associating verifiable credentials with a decentralized identifier are described herein. A computing device can determine a link between a decentralized identifier (DID) and a domain name, and assign a verifiable credential to the DID to invoke an action associated with the domain name. For example, the verifiable credential can be used to control an identifier on a platform different than the domain name. In some examples, a registrar can validate an identity of the registrant based on the decentralized identifier. The computing device can use the verifiable credential identified in the decentralized identifier to provide secure verifications of an identity.

Abstract: Techniques for signing internet data are disclosed. The techniques include accessing a plurality of internet data records. The techniques also include generating, using at least one electronic processor, leaf nodes from the plurality of internet data records, and constructing a recursive hash tree from the plurality of leaf nodes. The techniques also include deriving information sufficient to validate the root node, and publishing, in an internet public key infrastructure (PKI) as a synthesized public key, the information sufficient to validate the root node. The techniques also include providing, through the internet and as a signature on at least one of the plurality of internet data records, validation data including sibling path data from the recursive hash tree, such that an internet client validates the at least one of the internet data records using at least the validation data and the synthesized public key.

Abstract: A method of providing domain name system (“DNS”) eligibility is provided. The method includes obtaining, at an eligibility service comprising at least one electronic server computer communicatively coupled to a computer network, a request of an eligibility proof from a DNS client; validating, by the eligibility service, the request; providing, by the eligibility service, the eligibility proof to the DNS client; obtaining, by the eligibility service, the eligibility proof, wherein the eligibility proof is related to a registration of a domain name by the DNS client with a DNS registry; validating, by the eligibility service, the eligibility proof; applying, by the eligibility service, a promotion credit to an account of the DNS client; and providing, by the eligibility service, a confirmation of the promotion credit to the DNS client.

Abstract: Systems, methods, and computer products for providing fractional control of a domain name by a plurality of entities enable operations that may include: providing an executable program for storage on a blockchain, the executable program configured to store a representation of the domain name in association with a plurality of identifications that each correspond to an entity that has a fractional control of the domain name; indicating, to the program, that the domain name is available for fractional control; receiving a message that includes the representation of the domain name and indications of a plurality of blockchain addresses, which are stored by the program as the plurality of identifications; and storing, in a domain name registration database, a representation of a fractional control status of the domain name. Each fractional control of the domain name may enable an authorization or a refusal of a modification related to the domain name.

Abstract: A computer-implemented method, computer-readable medium, and an apparatus operable to perform the method is provided for managing multiple provisioned domain name system (“DNS”) registry objects. The method can include receiving, at a DNS registry, a multiple domain extensible provisioning protocol (“EPP”) command from a registrar on behalf of a registrant to perform an action for each provisioned DNS registry object of the multiple provisioned DNS registry objects; comparing the action with one or more allowable actions in a policy maintained by the registry; determining, by a processor, that the action is allowable based on the comparing; and performing, based on the determining, the action on each of the provisioned DNS registry objects in one transaction.

Abstract: Techniques for provisioning a key server to facilitate secure communications between a web server and a client by providing the client with a first data structure including information on how the web server may obtain a target symmetric key are presented. The techniques can include: provisioning the key server with a second data structure including information on how the key server may generate the first data structure; receiving a request on behalf of a web server for a third data structure comprising information on how the client may obtain the first data structure from the key server; and obtaining the third data structure, such that the third data structure is published in association with an identification of the web server, and such that the client uses the third data structure to obtain the first data structure and uses the first data structure to communicate with the web server.

Abstract: One or more DNS services are provided that are configured to not only tolerate some commonly observed DNSSEC misconfigurations (while still providing DNSSEC's security guarantees), but also provide a more intelligent DNS resolution process informed by DNSSEC.

Abstract: A Domain Name System (“DNS”) package, a non-transitory computer-readable medium, and a method for providing domain name resolution services are disclosed. The system can include one or more built-in DNS hierarchy databases configured for deployment within a network, wherein the one or more built-in DNS hierarchy databases stores DNS records. The system can also include a recursive name server, wherein the recursive name server is configured to query the one or more built-in DNS hierarchy databases during domain name resolution, the recursive name server configured to select the one or more built-in DNS hierarchy databases based on a policy indicating a preference for the one or more built-in DNS hierarchy databases over a domain name server located outside of the network. Furthermore, the system can include a recursive name server database configured to store DNS records for the recursive name server.

Abstract: Embodiments relate to systems, devices, computer-readable media, and computer-implemented methods for generating domain name suggestions by receiving an input string via a user interface, determining an alternative of the input string, determining affixes of the input string, determining top level domains associated with the input string, determining registration availability of domain names including one-step string sequences from the input string based on the alternative input string, the affixes of the input string, and the top level domains associated with the input string, and generating a display for the user interface, where the display includes: the input string, the alternative of the input string, the affixes of the input string, and the top level domains associated with the input string; and indications of the registration availability of the domains names including the one-step string sequences.

Abstract: A computer-implemented method includes: receiving a first request from a registrant to associate a domain name with a blockchain address; transmitting the first request to a registry, wherein the registry is configured to digitally sign the first request; submitting the digitally signed data from the first request or transformation of the data from first request to a first blockchain contract, wherein the first blockchain contract is configured to store the associated domain name as a first blockchain identifier; determining a deployment of a second blockchain contract by the registrant; transmitting a second request to the registrant to associate a subdomain of the associated domain name as a second blockchain identifier for the second blockchain contract; receiving, from the registrant, an indication to use the subdomain as the second blockchain identifier for the second blockchain contract; transmitting the second request to a registry, wherein the registry is configured to digitally sign the second reques

Abstract: A digital object architecture infrastructure includes a handle system that stores handle data and a proxy server that caches handle data for rapid access. A client connects to the proxy server to request access to the handle data. When the handle data does not have access restrictions and is currently cached, the proxy server returns the handle data to the client without accessing the handle system. When the handle data does not have access restrictions and is not cached, the proxy server obtains the handle data from the handle system, caches a copy of the handle data for future access, and provides the handle data to the client. The proxy server may cache encrypted handle data that is subject to access restrictions, cannot be decrypted by proxy server, and can be provided to a client determined to be allowed access. The client can then decrypt the encrypted handle data.

Abstract: Techniques for signing internet data are disclosed. The techniques include accessing a plurality of internet data records. The techniques also include generating, using at least one electronic processor, leaf nodes from the plurality of internet data records, and constructing a recursive hash tree from the plurality of leaf nodes. The techniques also include deriving information sufficient to validate the root node, and publishing, in an internet public key infrastructure (PKI) as a synthesized public key, the information sufficient to validate the root node. The techniques also include providing, through the internet and as a signature on at least one of the plurality of internet data records, validation data including sibling path data from the recursive hash tree, such that an internet client validates the at least one of the internet data records using at least the validation data and the synthesized public key.