English
Related papers

Related papers: A Survey on DNS Encryption: Current Development, M…

200 papers

Both enterprise and national firewalls filter network connections. For data forensics and botnet removal applications, it is important to establish the information source. In this paper, we describe a data transport layer which allows a…

Cryptography and Security · Computer Science 2017-04-04 Yu Fu , Zhe Jia , Lu Yu , Xingsi Zhong , Richard Brooks

Given the importance of privacy, many Internet protocols are nowadays designed with privacy in mind (e.g., using TLS for confidentiality). Foreseeing all privacy issues at the time of protocol design is, however, challenging and may become…

Networking and Internet Architecture · Computer Science 2022-09-21 Olivier van der Toorn , Raffaele Sommese , Anna Sperotto , Roland van Rijswijk-Deij , Mattijs Jonker

In this paper we introduce an intrusion detection system for Denial of Service (DoS) attacks against Domain Name System (DNS). Our system architecture consists of two most important parts: a statistical preprocessor and a neural network…

Cryptography and Security · Computer Science 2009-12-10 Samaneh Rastegari , M. Iqbal Saripan , Mohd Fadlee A. Rasid

The domain name system (DNS) is a crucial backbone of the Internet and millions of new domains are created on a daily basis. While the vast majority of these domains are legitimate, adversaries also register new hostnames to carry out…

Cryptography and Security · Computer Science 2019-02-25 Dennis Tatang , Florian Quinkert , Nico Dolecki , Thorsten Holz

DNS tunneling techniques are often used for malicious purposes but network security mechanisms have struggled to detect these. Network forensic analysis has thus been used but has proved slow and effort intensive as Network Forensics…

Cryptography and Security · Computer Science 2017-09-20 Irvin Homem , Panagiotis Papapetrou , Spyridon Dosis

HTTPS is quickly rising alongside the need of Internet users to benefit from security and privacy when accessing the Web, and it becomes the predominant application protocol on the Internet. This migration towards a secure Web using HTTPS…

Cryptography and Security · Computer Science 2020-08-20 Wazen M. Shbair , Thibault Cholez , Jerome Francois , Isabelle Chrisment

IThe botnet is considered as a critical issue of the Internet due to its fast growing mechanism and affect. Recently, Botnets have utilized the DNS and query DNS server just like any legitimate hosts. In this case, it is difficult to…

Networking and Internet Architecture · Computer Science 2009-11-04 Ahmed M. Manasrah , Awsan Hasan , Omar Amer Abouabdalla , Sureswaran Ramadass

Distributed Denial-of-Service (DDoS) attacks exhaust resources, leaving a server unavailable to legitimate clients. The Domain Name System (DNS) is a frequent target of DDoS attacks. Since DNS is a critical infrastructure service,…

Cryptography and Security · Computer Science 2022-09-16 A S M Rizvi , Jelena Mirkovic , John Heidemann , Wesley Hardaker , Robert Story

Domain Name System (DNS) is a crucial component of current IP-based networks as it is the standard mechanism for name to IP resolution. However, due to its lack of data integrity and origin authentication processes, it is vulnerable to a…

Machine Learning · Computer Science 2020-12-29 Abdallah Moubayed , MohammadNoor Injadat , Abdallah Shami , Hanan Lutfiyya

Domain fronting is a network communication technique that involves leveraging (or abusing) content delivery networks (CDNs) to disguise the final destination of network packets by presenting them as if they were intended for a different…

Cryptography and Security · Computer Science 2024-09-02 Karthika Subramani , Roberto Perdisci , Pierros Skafidas

Network intrusion detection systems play a crucial role in the security strategy employed by organisations to detect and prevent cyberattacks. Such systems usually combine pattern detection signatures with anomaly detection techniques…

Cryptography and Security · Computer Science 2026-03-13 Massimiliano Altieri , Ronan Hamon , Roberto Corizzo , Michelangelo Ceci , Ignacio Sanchez

The traditional design principle for Internet protocols indicates: "Be strict when sending and tolerant when receiving" [RFC1958], and DNS is no exception to this. The transparency of DNS in handling the DNS records, also standardised…

Cryptography and Security · Computer Science 2022-05-12 Philipp Jeitner , Haya Shulman

In this paper, we study the performance of encrypted DNS protocols and conventional DNS from thousands of home networks in the United States, over one month in 2020. We perform these measurements from the homes of 2,693 participating…

Networking and Internet Architecture · Computer Science 2021-07-29 Austin Hounsel , Paul Schmitt , Kevin Borgolte , Nick Feamster

Development of information technology, especially in the field of computer network allows the exchange of information faster and more complex and the data that is exchanged can vary. Security of data on communication in the network is a…

Cryptography and Security · Computer Science 2015-08-25 Heru Pranata , Leon Andretti Abdillah , Usman Ependi

The paper presents an analysis of the main mechanisms of decryption of SSL/TLS traffic. Methods and technologies for detecting malicious activity in encrypted traffic that are used by leading companies are also considered. Also, the…

Cryptography and Security · Computer Science 2019-04-18 Tamara Radivilova , Lyudmyla Kirichenko , Dmytro Ageyev , Maxim Tawalbeh , Vitalii Bulakh

Anti-malware agents typically communicate with their remote services to share information about suspicious files. These remote services use their up-to-date information and global context (view) to help classify the files and instruct their…

Cryptography and Security · Computer Science 2021-09-24 Asaf Nadler , Ron Bitton , Oleg Brodt , Asaf Shabtai

A covert attack method often used by APT organizations is the DNS tunnel, which is used to pass information by constructing C2 networks. And they often use the method of frequently changing domain names and server IP addresses to evade…

Networking and Internet Architecture · Computer Science 2022-07-15 Xin Ma , Shize Guo , Zhisong Pan , Bin Liu , Kaolin Jiang , Ming Chen , Shijiao Tang

Although the Domain Name System (DNS) was designed as a naming system, its features have made it appealing to repurpose it for the deployment of novel systems. One important class of such systems are security enhancements, and this work…

Cryptography and Security · Computer Science 2017-02-20 Pawel Szalachowski , Adrian Perrig

Domain name system (DNS) is a crucial part of the Internet, yet has been widely exploited by cyber attackers. Apart from making static methods like blacklists or sinkholes infeasible, some weasel attackers can even bypass detection systems…

Cryptography and Security · Computer Science 2019-09-05 Xiaoqing Sun , Mingkai Tong , Jiahai Yang

Everyone is concerned about the Internet security, yet most traffic is not cryptographically protected. The usual justification is that most attackers are only off-path and cannot intercept traffic; hence, challenge-response mechanisms…

Cryptography and Security · Computer Science 2013-05-07 Yossi Gilad , Amir Herzberg , Haya Shulman