English
Related papers

Related papers: Detecting DNS Tunnels Using Character Frequency An…

200 papers

The domain name system (DNS) is an important protocol in today's Internet operation, and is the standard naming convention between domain names, names that are easy to read, understand, and remember by humans, to IP address of Internet…

Cryptography and Security · Computer Science 2016-06-24 Ah Reum Kang , Jeffrey Spaulding , Aziz Mohaisen

IThe botnet is considered as a critical issue of the Internet due to its fast growing mechanism and affect. Recently, Botnets have utilized the DNS and query DNS server just like any legitimate hosts. In this case, it is difficult to…

Networking and Internet Architecture · Computer Science 2009-11-04 Ahmed M. Manasrah , Awsan Hasan , Omar Amer Abouabdalla , Sureswaran Ramadass

Enterprise Networks are growing in scale and complexity, with heterogeneous connected assets needing to be secured in different ways. Nevertheless, virtually all connected assets use the Domain Name System (DNS) for address resolution, and…

Cryptography and Security · Computer Science 2022-05-19 Jawad Ahmed

Domain fronting is a network communication technique that involves leveraging (or abusing) content delivery networks (CDNs) to disguise the final destination of network packets by presenting them as if they were intended for a different…

Cryptography and Security · Computer Science 2024-09-02 Karthika Subramani , Roberto Perdisci , Pierros Skafidas

Domain Name System (DNS) tunneling remains a covert channel for data exfiltration and command-and-control communication. Although graph-based methods such as GraphTunnel achieve strong accuracy, they introduce significant latency and…

Computer Vision and Pattern Recognition · Computer Science 2025-12-11 Faraz Ali , Muhammad Afaq , Mahmood Niazi , Muzammil Behzad

The concept of agile domain name system (DNS) refers to dynamic and rapidly changing mappings between domain names and their Internet protocol (IP) addresses. This empirical paper evaluates the bias from this kind of agility for DNS-based…

Cryptography and Security · Computer Science 2018-05-17 Jukka Ruohonen , Ville Leppänen

Malicious domains are one of the major resources required for adversaries to run attacks over the Internet. Due to the important role of the Domain Name System (DNS), extensive research has been conducted to identify malicious domains based…

Cryptography and Security · Computer Science 2018-12-04 Yury Zhauniarovich , Issa Khalil , Ting Yu , Marc Dacier

The Domain Name System (DNS) is central to all Internet user activity, resolving accessed domain names into Internet Protocol (IP) addresses. As a result, curious DNS resolvers can learn everything about Internet users' interests. Public…

Cryptography and Security · Computer Science 2025-09-30 Philip Sjösvärd , Hongyu Jin , Panos Papadimitratos

Nowadays, malware campaigns have reached a high level of sophistication, thanks to the use of cryptography and covert communication channels over traditional protocols and services. In this regard, a typical approach to evade botnet…

Cryptography and Security · Computer Science 2021-01-25 Constantinos Patsakis , Fran Casino

Network intrusion detection systems play a crucial role in the security strategy employed by organisations to detect and prevent cyberattacks. Such systems usually combine pattern detection signatures with anomaly detection techniques…

Cryptography and Security · Computer Science 2026-03-13 Massimiliano Altieri , Ronan Hamon , Roberto Corizzo , Michelangelo Ceci , Ignacio Sanchez

Recent advances in next-generation sequencing technologies have facilitated the use of deoxyribonucleic acid (DNA) as a novel covert channels in steganography. There are various methods that exist in other domains to detect hidden messages…

Machine Learning · Computer Science 2018-10-08 Ho Bae , Byunghan Lee , Sunyoung Kwon , Sungroh Yoon

Most online communications rely on DNS to map domain names to their hosting IP address(es). Previous work has shown that DNS-based network interference is widespread due to the unencrypted and unauthenticated nature of the original DNS…

Networking and Internet Architecture · Computer Science 2022-02-02 Nguyen Phong Hoang , Michalis Polychronakis , Phillipa Gill

In the last decade, the use of fast flux technique has become established as a common practice to organise botnets in Fast Flux Service Networks (FFSNs), which are platforms able to sustain illegal online services with very high…

Cryptography and Security · Computer Science 2018-09-19 Pierangelo Lombardo , Salvatore Saeli , Federica Bisio , Davide Bernardi , Danilo Massa

The Domain Name System (DNS) provides a translation between readable domain names and IP addresses. The DNS is a key infrastructure component of the Internet and a prime target for a variety of attacks. One of the most significant threat to…

Cryptography and Security · Computer Science 2019-06-27 Harel Berger , Amit Z. Dvir , Moti Geva

Domain name system (DNS) is a crucial part of the Internet, yet has been widely exploited by cyber attackers. Apart from making static methods like blacklists or sinkholes infeasible, some weasel attackers can even bypass detection systems…

Cryptography and Security · Computer Science 2019-09-05 Xiaoqing Sun , Mingkai Tong , Jiahai Yang

The domain name system (DNS) is a crucial backbone of the Internet and millions of new domains are created on a daily basis. While the vast majority of these domains are legitimate, adversaries also register new hostnames to carry out…

Cryptography and Security · Computer Science 2019-02-25 Dennis Tatang , Florian Quinkert , Nico Dolecki , Thorsten Holz

Spam domains are sources of unsolicited mails and one of the primary vehicles for fraud and malicious activities such as phishing campaigns or malware distribution. Spam domain detection is a race: as soon as the spam mails are sent, taking…

Cryptography and Security · Computer Science 2022-05-05 Simon Fernandez , Maciej Korczyński , Andrzej Duda

The Domain Name System (DNS) does not provide query privacy. Query obfuscation schemes have been proposed to overcome this limitation, but, so far, they have not been evaluated in a realistic setting. In this paper we evaluate the security…

Cryptography and Security · Computer Science 2016-03-23 Dominik Herrmann , Max Maaß , Hannes Federrath

In this paper, an analytical model for DDoS attacks detection is proposed, in which propagation of abrupt traffic changes inside public domain is monitored to detect a wide range of DDoS attacks. Although, various statistical measures can…

Cryptography and Security · Computer Science 2012-04-26 B. B. Gupta , R. C. Joshi , Manoj Misra

In this paper we propose a novel approach to identify anomalies in DNS traffic. The traffic time-points data is transformed to a string, which is used by new fast appproximate string matching algorithm to detect anomalies. Our approach is…

Cryptography and Security · Computer Science 2019-05-24 Roni Mateless , Michael Segal