English
Related papers

Related papers: PDoT: Private DNS-over-TLS with TEE Support

200 papers

The Domain Name System (DNS), which converts domain names to their respective IP addresses, has advanced enhancements aimed at safeguarding DNS data and users' identity from attackers. The recent privacy-focused advancements have enabled…

Cryptography and Security · Computer Science 2025-12-09 Aditya Kulkarni , Tamal Das , Vivek Balachandran

In this paper, we present the design, implementation, and analysis of DNS over CoAP (DoC), a new proposal for secure and privacy-friendly name resolution of constrained IoT devices. We implement different design choices of DoC in RIOT, an…

Networking and Internet Architecture · Computer Science 2023-08-07 Martine S. Lenders , Christian Amsüss , Cenk Gündogan , Marcin Nawrocki , Thomas C. Schmidt , Matthias Wählisch

Today, Internet offers many critical applications. So, it becomes very crucial for Internet service providers to ensure traceability of operations and to secure data exchange. Since all these communications are based on the use of the…

Cryptography and Security · Computer Science 2012-08-01 Kaouthar Chetioui , Ghizlane Orhanou , Said El Hajji , Abdelmajid Lakbabi

Nearly every service on the Internet relies on the Domain Name System (DNS), which translates a human-readable name to an IP address before two endpoints can communicate. Today, DNS traffic is unencrypted, leaving users vulnerable to…

Networking and Internet Architecture · Computer Science 2020-02-25 Austin Hounsel , Kevin Borgolte , Paul Schmitt , Jordan Holland , Nick Feamster

DNS Security Extensions (DNSSEC) provide the most effective way to fight DNS cache poisoning attacks. Yet, very few DNS resolvers perform DNSSEC validation. Identifying such systems is non-trivial and the existing methods are not suitable…

Cryptography and Security · Computer Science 2024-06-06 Yevheniya Nosyk , Maciej Korczyński , Andrzej Duda

End-users are concerned about protecting the privacy of their sensitive personal data that are generated while working on information systems. This extends to both the data they actively provide including personal identification in exchange…

Cryptography and Security · Computer Science 2023-06-21 Pratyush Dikshit , Jayasree Sengupta , Vaibhav Bajpai

Private decision tree evaluation (PDTE) allows a decision tree holder to run a secure protocol with a feature provider. By running the protocol, the feature provider will learn a classification result. Nothing more is revealed to either…

Cryptography and Security · Computer Science 2022-05-04 Jianli Bai , Xiangfu Song , Shujie Cui , Ee-Chien Chang , Giovanni Russello

The domain name system (DNS) that maps alphabetic names to numeric Internet Protocol (IP) addresses plays a foundational role for Internet communications. By default, DNS queries and responses are exchanged in unencrypted plaintext, and…

Cryptography and Security · Computer Science 2024-07-08 Minzhao Lyu , Hassan Habibi Gharakheili , Vijay Sivaraman

In recent years, DNS over Encrypted (DoE) methods have been regarded as a novel trend within the realm of the DNS ecosystem. In these DoE methods, DNS over HTTPS (DoH) provides encryption to protect data confidentiality while providing…

Cryptography and Security · Computer Science 2024-03-20 Cong Dong , Jiahai Yang , Yun Li , Yue Wu , Yufan Chen , Chenglong Li , Haoran Jiao , Xia Yin , Yuling Liu

Distributed Denial-of-Service (DDoS) attacks exhaust resources, leaving a server unavailable to legitimate clients. The Domain Name System (DNS) is a frequent target of DDoS attacks. Since DNS is a critical infrastructure service,…

Cryptography and Security · Computer Science 2022-09-16 A S M Rizvi , Jelena Mirkovic , John Heidemann , Wesley Hardaker , Robert Story

Although the Domain Name System (DNS) was designed as a naming system, its features have made it appealing to repurpose it for the deployment of novel systems. One important class of such systems are security enhancements, and this work…

Cryptography and Security · Computer Science 2017-02-20 Pawel Szalachowski , Adrian Perrig

The Domain Name System (DNS) was created to resolve the IP addresses of the web servers to easily remembered names. When it was initially created, security was not a major concern; nowadays, this lack of inherent security and trust has…

Cryptography and Security · Computer Science 2020-08-17 Pavlos Papadopoulos , Nikolaos Pitropakis , William J. Buchanan , Owen Lo , Sokratis Katsikas

The scarcity of data and the high complexity of Advanced Persistent Threats (APTs) attacks have created challenges in comprehending their behavior and hindered the exploration of effective detection techniques. To create an effective APT…

Cryptography and Security · Computer Science 2025-02-14 Almuthanna Alageel , Sergio Maffeis , Imperial College London

With the growing realization that current Internet protocols are reaching the limits of their senescence, a number of on-going research efforts aim to design potential next-generation Internet architectures. Although they vary in maturity…

Networking and Internet Architecture · Computer Science 2012-08-08 Paolo Gasti , Gene Tsudik , Ersin Uzun , Lixia Zhang

The domain name system (DNS) is an important protocol in today's Internet operation, and is the standard naming convention between domain names, names that are easy to read, understand, and remember by humans, to IP address of Internet…

Cryptography and Security · Computer Science 2016-06-24 Ah Reum Kang , Jeffrey Spaulding , Aziz Mohaisen

The Domain Name System (DNS) is involved in practically all web activity, translating easy-to-remember domain names into Internet Protocol (IP) addresses. Due to its central role on the Internet, DNS exposes user web activity in detail. The…

Cryptography and Security · Computer Science 2025-09-30 Philip Sjösvärd , Hongyu Jin , Panos Papadimitratos

Many applications and protocols depend on the ability to generate a pool of servers to conduct majority-based consensus mechanisms and often this is done by doing plain DNS queries. A recent off-path attack [1] against NTP and security…

Cryptography and Security · Computer Science 2020-10-20 Philipp Jeitner , Haya Shulman , Michael Waidner

DNS, one of the fundamental protocols of the TCP/IP stack, has evolved over the years to protect against threats and attacks. This study examines the risks associated with DNS and explores recent advancements that contribute towards making…

Cryptography and Security · Computer Science 2023-12-11 Levente Csikor , Dinil Mon Divakaran

The traditional Domain Name System (DNS) lacks fundamental features of security and privacy in its design. As concerns of privacy increased on the Internet, security and privacy enhancements of DNS have been actively investigated and…

Cryptography and Security · Computer Science 2024-04-24 Jun Kurihara , Takeshi Kubo

Proof-of-Stake (PoS) consensus protocols often face a trade-off between performance and security. Protocols that pre-elect leaders for subsequent rounds are vulnerable to Denial-of-Service (DoS) attacks, which can disrupt the network and…

Cryptography and Security · Computer Science 2025-10-07 Ivan Homoliak , Martin Perešíni , Marek Tamaškovič , Timotej Ponek , Lukáš Hellebrandt , Kamil Malinka