English
Related papers

Related papers: DNS attack mitigation Using OpenStack Isolation

200 papers

This paper proposes a defense scheme against malicious use of DNS tunnel. A tunnel validator is designed to provide trustworthy tunnel-aware defensive recursive service. In addition to the detection algorithm of malicious tunnel domains,…

Cryptography and Security · Computer Science 2016-05-05 Zheng Wang

A covert attack method often used by APT organizations is the DNS tunnel, which is used to pass information by constructing C2 networks. And they often use the method of frequently changing domain names and server IP addresses to evade…

Networking and Internet Architecture · Computer Science 2022-07-15 Xin Ma , Shize Guo , Zhisong Pan , Bin Liu , Kaolin Jiang , Ming Chen , Shijiao Tang

One of the most common causes of lack of continuity of online systems stems from a widely popular Cyber Attack known as Distributed Denial of Service (DDoS), in which a network of infected devices (botnet) gets exploited to flood the…

Cryptography and Security · Computer Science 2022-08-11 Giorgio Piras , Maura Pintor , Luca Demetrio , Battista Biggio

Software-Defined Network (SDN) radically changes the network architecture by decoupling the network logic from the underlying forwarding devices. This architectural change rejuvenates the network-layer granting centralized management and…

Cryptography and Security · Computer Science 2018-04-03 Arash Shaghaghi , Mohamed Ali Kaafar , Rajkumar Buyya , Sanjay Jha

The detection of Denial of Service (DoS) attacks remains a challenge for the cloud environment, affecting a massive number of services and applications hosted by such virtualized infrastructures. Typically, in the literature, the detection…

Cryptography and Security · Computer Science 2019-04-15 João Henrique Corrêa , Patrick Marques Ciarelli , Moises R. N. Ribeiro , Rodolfo da Silva Villaca

Existing distributed denial-of-service attack detection in software defined networks (SDNs) typically perform detection in a single domain. In reality, abnormal traffic usually affects multiple network domains. Thus, a cross-domain attack…

Networking and Internet Architecture · Computer Science 2018-09-20 Liehuang Zhu , Xiangyun Tang , Meng Shen , Xiaojiang Du , Mohsen Guizani

Distributed Denial of Service (DDoS) attacks have become increasingly prevalent and dangerous in the context of Internet of Things (IoT) networks, primarily due to the low-security configurations of many connected devices. This paper…

Cryptography and Security · Computer Science 2025-07-17 Ifiyemi Leigha , Basak Comlekcioglu , Maria Pilar Bezanilla

Knowing customer's interests, e.g. which Video-On-Demand (VoD) or Social Network services they are using, helps telecommunication companies with better network planning to enhance the performance exactly where the customer's interests lie,…

Networking and Internet Architecture · Computer Science 2022-11-11 Aniss Maghsoudlou , Oliver Gasser , Ingmar Poese , Anja Feldmann

We perform the first analysis of methodologies for launching DNS cache poisoning: manipulation at the IP layer, hijack of the inter-domain routing and probing open ports via side channels. We evaluate these methodologies against DNS…

Cryptography and Security · Computer Science 2022-05-13 Tianxiang Dai , Philipp Jeitner , Haya Shulman , Michael Waidner

Deep Neural Network (DNN) has been showing great potential in kinds of real-world applications such as fraud detection and distress prediction. Meanwhile, data isolation has become a serious problem currently, i.e., different parties cannot…

Machine Learning · Computer Science 2020-03-13 Longfei Zheng , Chaochao Chen , Yingting Liu , Bingzhe Wu , Xibin Wu , Li Wang , Lei Wang , Jun Zhou , Shuang Yang

In this paper, we present the design, implementation, and analysis of DNS over CoAP (DoC), a new proposal for secure and privacy-friendly name resolution of constrained IoT devices. We implement different design choices of DoC in RIOT, an…

Networking and Internet Architecture · Computer Science 2023-08-07 Martine S. Lenders , Christian Amsüss , Cenk Gündogan , Marcin Nawrocki , Thomas C. Schmidt , Matthias Wählisch

DNS Security Extensions (DNSSEC) provide the most effective way to fight DNS cache poisoning attacks. Yet, very few DNS resolvers perform DNSSEC validation. Identifying such systems is non-trivial and the existing methods are not suitable…

Cryptography and Security · Computer Science 2024-06-06 Yevheniya Nosyk , Maciej Korczyński , Andrzej Duda

Domain Name System (DNS) is a critical component of the Internet. DNS resolvers, which act as the cache between DNS clients and DNS nameservers, are the central piece of the DNS infrastructure, essential to the scalability of DNS. However,…

Cryptography and Security · Computer Science 2023-10-06 Qifan Zhang , Xuesong Bai , Xiang Li , Haixin Duan , Qi Li , Zhou Li

Smart DNS (SDNS) services advertise access to "geofenced" content (typically, video streaming sites such as Netflix or Hulu) that is normally inaccessible unless the client is within a prescribed geographic region. SDNS is simple to use and…

Cryptography and Security · Computer Science 2020-12-16 Rahel A. Fainchtein , Adam J. Aviv , Micah Sherr , Stephen Ribaudo , Armaan Khullar

Many applications and protocols depend on the ability to generate a pool of servers to conduct majority-based consensus mechanisms and often this is done by doing plain DNS queries. A recent off-path attack [1] against NTP and security…

Cryptography and Security · Computer Science 2020-10-20 Philipp Jeitner , Haya Shulman , Michael Waidner

Distributed Denial of Service (DDoS) attacks have become more prominent recently, both in frequency of occurrence, as well as magnitude. Such attacks render key Internet resources unavailable and disrupt its normal operation. It is…

Cryptography and Security · Computer Science 2014-12-22 Michael Kallitsis , Stilian Stoev , George Michailidis

Distributed Denial of Service (DDoS) attacks have emerged as a popular means of causing mass targeted service disruptions, often for extended periods of time. The relative ease and low costs of launching such attacks, supplemented by the…

Cryptography and Security · Computer Science 2011-03-18 Jaydip Sen

Nowadays, denial of service (DoS) attacks represent a significant fraction of all attacks that take place in the Internet and their intensity is always growing. The main DoS attack methods consist of flooding their victims with bogus…

Networking and Internet Architecture · Computer Science 2017-01-04 Ricardo Paula Martins , José Legatheaux Martins , Henrique João Domingos

Software-Defined Networking (SDN) is an emerging paradigm, which evolved in recent years to address the weaknesses in traditional networks. The significant feature of the SDN, which is achieved by disassociating the control plane from the…

Cryptography and Security · Computer Science 2020-06-26 Mahmoud Said Elsayed , Nhien-An Le-Khac , Soumyabrata Dev , Anca Delia Jurcut

DDoS attacks, also known as distributed denial of service (DDoS) attacks, have emerged as one of the most serious and fastest-growing threats on the Internet. Denial-of-service (DDoS) attacks are an example of cyber attacks that target a…

Cryptography and Security · Computer Science 2022-04-28 Anupama Mishra