English
Related papers

Related papers: NXNSAttack: Recursive DNS Inefficiencies and Vulne…

200 papers

Virtually every Internet communication typically involves a Domain Name System (DNS) lookup for the destination server that the client wants to communicate with. Operators of DNS recursive resolvers---the machines that receive a client's…

Networking and Internet Architecture · Computer Science 2022-01-25 Paul Schmitt , Anne Edmundson , Nick Feamster

With the growing realization that current Internet protocols are reaching the limits of their senescence, a number of on-going research efforts aim to design potential next-generation Internet architectures. Although they vary in maturity…

Networking and Internet Architecture · Computer Science 2012-08-08 Paolo Gasti , Gene Tsudik , Ersin Uzun , Lixia Zhang

Distributed Denial-of-Service (DDoS) attacks exhaust resources, leaving a server unavailable to legitimate clients. The Domain Name System (DNS) is a frequent target of DDoS attacks. Since DNS is a critical infrastructure service,…

Cryptography and Security · Computer Science 2022-09-16 A S M Rizvi , Jelena Mirkovic , John Heidemann , Wesley Hardaker , Robert Story

Domain Name System (DNS), one of the important infrastructure in the Internet, was vulnerable to attacks, for the DNS designer didn't take security issues into consideration at the beginning. The defects of DNS may lead to users' failure of…

Networking and Internet Architecture · Computer Science 2017-04-24 Caiyun Huang , Peng Zhang , Junpeng Liu , Yong Sun , Xueqiang Zou

The Domain Name System (DNS) is essential for the Internet, giving a mechanism to resolve hostnames into Internet Protocol (IP) addresses. DNS is known as the world's largest distributed database that manages hostnames and Internet…

Cryptography and Security · Computer Science 2021-08-31 Hassnain ul hassan , Rizal Mohd Nor , Md Amiruzzaman , Sharyar Wani , Md. Rajibul Islam

The DNS (Domain Name System) protocol has been in use since the early days of the Internet. Although DNS as a de facto networking protocol had no security considerations in its early years, there have been many security enhancements, such…

Cryptography and Security · Computer Science 2025-02-17 Abdullah Aydeger , Sanzida Hoque , Engin Zeydan , Kapal Dev

The Domain Name System (DNS) serves as the backbone of the Internet, primarily translating domain names to IP addresses. Over time, various enhancements have been introduced to strengthen the integrity of DNS. Among these, DNSSEC stands out…

Cryptography and Security · Computer Science 2025-12-09 Aduma Rishith , Aditya Kulkarni , Tamal Das , Vivek Balachandran

Cyber-attacks have been one of the deadliest attacks in today's world. One of them is DDoS (Distributed Denial of Services). It is a cyber-attack in which the attacker attacks and makes a network or a machine unavailable to its intended…

Cryptography and Security · Computer Science 2022-01-25 Aman Rangapur , Tarun Kanakam , Ajith Jubilson

Emerging protocols such as DNS-over-HTTPS (DoH) and DNS-over-TLS (DoT) improve the privacy of DNS queries and responses. While this trend towards encryption is positive, deployment of these protocols has in some cases resulted in further…

Networking and Internet Architecture · Computer Science 2021-09-23 Austin Hounsel , Paul Schmitt , Kevin Borgolte , Nick Feamster

In this paper we introduce an intrusion detection system for Denial of Service (DoS) attacks against Domain Name System (DNS). Our system architecture consists of two most important parts: a statistical preprocessor and a neural network…

Cryptography and Security · Computer Science 2009-12-10 Samaneh Rastegari , M. Iqbal Saripan , Mohd Fadlee A. Rasid

The traditional design principle for Internet protocols indicates: "Be strict when sending and tolerant when receiving" [RFC1958], and DNS is no exception to this. The transparency of DNS in handling the DNS records, also standardised…

Cryptography and Security · Computer Science 2022-05-12 Philipp Jeitner , Haya Shulman

Distributed denial of service(DDos) attack is ongoing dangerous threat to the Internet. Commonly, DDos attacks are carried out at the network layer, e.g. SYN flooding, ICMP flooding and UDP flooding, which are called Distributed denial of…

Networking and Internet Architecture · Computer Science 2014-02-11 Prajwal R Thakare , K. Hanumantha Rao

Denial of Service (DoS) attacks frequently happen on the Internet, paralyzing Internet services and causing millions of dollars of financial loss. This work presents NetFence, a scalable DoS-resistant network architecture. NetFence uses a…

Networking and Internet Architecture · Computer Science 2010-09-02 Xin Liu , Xiaowei Yang , Yong Xia

This paper describes an advanced SQL injection technique where DNS resolution process is exploited for retrieval of malicious SQL query results. Resulting DNS requests are intercepted by attackers themselves at the controlled remote name…

Cryptography and Security · Computer Science 2013-03-14 Miroslav Stampar

Previous attacks that link the sender and receiver of traffic in the Tor network ("correlation attacks") have generally relied on analyzing traffic from TCP connections. The TCP connections of a typical client application, however, are…

Cryptography and Security · Computer Science 2016-10-13 Benjamin Greschbach , Tobias Pulls , Laura M. Roberts , Philipp Winter , Nick Feamster

Domain Name Service is a trusted protocol made for name resolution, but during past years some approaches have been developed to use it for data transfer. DNS Tunneling is a method where data is encoded inside DNS queries, allowing…

Cryptography and Security · Computer Science 2020-06-16 Franco Palau , Carlos Catania , Jorge Guerra , Sebastian Garcia , Maria Rigaki

Security of information passing through the Internet is threatened by today's most advanced malware ranging from orchestrated botnets to simpler polymorphic worms. These threats, as examples of zero-day attacks, are able to change their…

Cryptography and Security · Computer Science 2020-12-22 Soroush M. Sohi , Jean-Pierre Seifert , Fatemeh Ganji

Denial of Service (DoS) and Distributed Denial of Service of Service (DDoS) attacks are commonly used to disrupt network services. Attack techniques are always improving and due to the structure of the internet and properties of network…

Cryptography and Security · Computer Science 2022-11-29 Jonah Burgess

Large Reasoning Models (LRMs) have demonstrated promising performance in complex tasks. However, the resource-consuming reasoning processes may be exploited by attackers to maliciously occupy the resources of the servers, leading to a…

Cryptography and Security · Computer Science 2025-11-25 Zhenhao Zhu , Yue Liu , Zhiwei Xu , Yingwei Ma , Hongcheng Gao , Nuo Chen , Yanpei Guo , Wenjie Qu , Huiying Xu , Zifeng Kang , Xinzhong Zhu , Jiaheng Zhang

We explore the security of residential routers and find a range of critical vulnerabilities. Our evaluations show that 10 out of 36 popular routers are vulnerable to injections of fake records via misinterpretation of special characters. We…

Cryptography and Security · Computer Science 2022-08-26 Philipp Jeitner , Haya Shulman , Lucas Teichmann , Michael Waidner