English
Related papers

Related papers: Take up DNSSEC When Needed

200 papers

The Domain Name System (DNS) does not provide query privacy. Query obfuscation schemes have been proposed to overcome this limitation, but, so far, they have not been evaluated in a realistic setting. In this paper we evaluate the security…

Cryptography and Security · Computer Science 2016-03-23 Dominik Herrmann , Max Maaß , Hannes Federrath

Recent developments to encrypt the Domain Name System (DNS) have resulted in major browser and operating system vendors deploying encrypted DNS functionality, often enabling various configurations and settings by default. In many cases,…

Cryptography and Security · Computer Science 2023-02-22 Alexandra Nisenoff , Ranya Sharma , Nick Feamster

Malicious domains are one of the major resources required for adversaries to run attacks over the Internet. Due to the important role of the Domain Name System (DNS), extensive research has been conducted to identify malicious domains based…

Cryptography and Security · Computer Science 2018-12-04 Yury Zhauniarovich , Issa Khalil , Ting Yu , Marc Dacier

One of the most common basic techniques for improving the performance of web applications is caching frequently accessed data in fast data stores, colloquially known as cache daemons. In this paper we present a cache daemon suitable for…

Distributed, Parallel, and Cluster Computing · Computer Science 2009-10-02 Ivan Voras , Mario Zagar

Cache side channel attacks are increasingly alarming in modern processors due to the recent emergence of Spectre and Meltdown attacks. A typical attack performs intentional cache access and manipulates cache states to leak secrets by…

Hardware Architecture · Computer Science 2024-05-16 Luyi Li , Jiayi Huang , Lang Feng , Zhongfeng Wang

Distributed Denial of Service (DDoS) attacks have emerged as a popular means of causing mass targeted service disruptions, often for extended periods of time. The relative ease and low costs of launching such attacks, supplemented by the…

Cryptography and Security · Computer Science 2011-03-18 Jaydip Sen

Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks have emerged as a popular means of causing collection particular overhaul disruptions, often for total periods of instance. The relative ease and low costs of…

Cryptography and Security · Computer Science 2013-02-22 Saravanan Kumarasamy , Dr. R. Asokan

Deep neural networks (DNNs) are vulnerable to backdoor attack, which does not affect the network's performance on clean data but would manipulate the network behavior once a trigger pattern is added. Existing defense methods have greatly…

Machine Learning · Computer Science 2025-04-08 Min Liu , Alberto Sangiovanni-Vincentelli , Xiangyu Yue

Online tracking is a whack-a-mole game between trackers who build and monetize behavioral user profiles through intrusive data collection, and anti-tracking mechanisms, deployed as a browser extension, built-in to the browser, or as a DNS…

Cryptography and Security · Computer Science 2021-03-08 Yana Dimova , Gunes Acar , Lukasz Olejnik , Wouter Joosen , Tom Van Goethem

Cache attacks pose a threat to any code whose execution flow or memory accesses depend on sensitive information. Especially in public clouds, where caches are shared across several tenants, cache attacks remain an unsolved problem. Cache…

Cryptography and Security · Computer Science 2017-09-07 Samira Briongos , Gorka Irazoqui , Pedro Malagón , Thomas Eisenbarth

With the growing realization that current Internet protocols are reaching the limits of their senescence, a number of on-going research efforts aim to design potential next-generation Internet architectures. Although they vary in maturity…

Networking and Internet Architecture · Computer Science 2012-08-08 Paolo Gasti , Gene Tsudik , Ersin Uzun , Lixia Zhang

This paper details data science research in the area of Cyber Threat Intelligence applied to a specific type of Distributed Denial of Service (DDoS) attack. We study a DDoS technique prevalent in the Domain Name System (DNS) for which…

Cryptography and Security · Computer Science 2019-07-23 Renée Burton

Trusted timestamping consists in proving that certain data existed at a particular point in time. Existing timestamping methods require either a centralized and dedicated trusted service or the collaboration of other participants using the…

Networking and Internet Architecture · Computer Science 2014-03-12 Christoph Neumann , Olivier Heen , Stéphane Onno

The absence of security and privacy measures between DNS recursive resolvers and authoritative nameservers has been exploited by both on-path and off-path attackers. Although numerous security proposals have been introduced in practice and…

Cryptography and Security · Computer Science 2025-06-27 Ali Sadeghi Jahromi , AbdelRahman Abdou , Paul C. van Oorschot

The current Domain Name System (DNS), as a core infrastructure of the internet, exhibits several shortcomings: its centralized architecture leads to censorship risks and single points of failure, making domain name resolution vulnerable to…

Networking and Internet Architecture · Computer Science 2024-12-25 Guang Yang

Deep neural networks (DNNs) demonstrate superior performance in various fields, including scrutiny and security. However, recent studies have shown that DNNs are vulnerable to backdoor attacks. Several defenses were proposed in the past to…

Machine Learning · Computer Science 2020-10-26 Akshaj Veldanda , Siddharth Garg

DNS is a vital component for almost every networked application. Originally it was designed as an unencrypted protocol, making user security a concern. DNS-over-HTTPS (DoH) is the latest proposal to make name resolution more secure. In this…

Networking and Internet Architecture · Computer Science 2019-09-16 Timm Boettger , Felix Cuadrado , Gianni Antichi , Eder Leao Fernandes , Gareth Tyson , Ignacio Castro , Steve Uhlig

When the global rollout of the DNS Security Extensions (DNSSEC) began in 2005, a first-of-its-kind trial started: The complexity of a core Internet protocol was magnified in favor of better security for the overall Internet. Thereby, the…

Cryptography and Security · Computer Science 2024-09-12 Eric Osterweil , Pouyan Fotouhi Tehrani , Thomas C. Schmidt , Matthias Wählisch

Since security was not among the original design goals of the Domain Name System (herein called Vanilla DNS), many secure DNS schemes have been proposed to enhance the security and privacy of the DNS resolution process. Some proposed…

Cryptography and Security · Computer Science 2026-04-20 Ali Sadeghi Jahromi , AbdelRahman Abdou , Paul C. van Oorschot

The Domain Name System (DNS) comprises name servers translating domain names into, commonly, IP addresses. Authoritative name servers hosts the resource records (RR) for certain zones, and resolver name servers are responsible for querying…

Cryptography and Security · Computer Science 2024-01-09 Jonathan Magnusson