English
Related papers

Related papers: A Survey on DNS Encryption: Current Development, M…

200 papers

DNS over TLS (DoT) and DNS over HTTPS (DoH) promise to improve privacy and security of DNS by encrypting DNS messages, especially when messages are padded to a uniform size. Firstly, to demonstrate the limitations of recommended padding…

Cryptography and Security · Computer Science 2021-06-29 Michael Mühlhauser , Henning Pridöhl , Dominik Herrmann

Distributed Denial of Service (DDoS) attacks have emerged as a popular means of causing mass targeted service disruptions, often for extended periods of time. The relative ease and low costs of launching such attacks, supplemented by the…

Cryptography and Security · Computer Science 2011-03-18 Jaydip Sen

Networked communications inherently depend on the ability of the sender of a message to indicate through some token how the message should be delivered to a particular recipient. The tokens that refer messages to recipients are variously…

Networking and Internet Architecture · Computer Science 2007-05-23 Michael J. O'Donnell

In recent years, DNS over Encrypted (DoE) methods have been regarded as a novel trend within the realm of the DNS ecosystem. In these DoE methods, DNS over HTTPS (DoH) provides encryption to protect data confidentiality while providing…

Cryptography and Security · Computer Science 2024-03-20 Cong Dong , Jiahai Yang , Yun Li , Yue Wu , Yufan Chen , Chenglong Li , Haoran Jiao , Xia Yin , Yuling Liu

The use of TLS by malware poses new challenges to network threat detection because traditional pattern-matching techniques can no longer be applied to its messages. However, TLS also introduces a complex set of observable data features that…

Cryptography and Security · Computer Science 2016-07-07 Blake Anderson , Subharthi Paul , David McGrew

One of the most critical components of the Internet that an attacker could exploit is the DNS (Domain Name System) protocol and infrastructure. Researchers have been constantly developing methods to detect and defend against the attacks…

Networking and Internet Architecture · Computer Science 2024-10-04 Abdullah Aydeger , Pei Zhou , Sanzida Hoque , Marco Carvalho , Engin Zeydan

Due to the vital role of security in online communications and this fact that attackers are developing their tools, modernizing the security tools is an essential. The efficiency of crypto systems has been proven after years, however one…

Cryptography and Security · Computer Science 2020-04-01 Mahboubeh Nazari , Sousan Tarahomi , Sobhan Aliabady

Domain Name System (DNS) is a hierarchical distributed naming system for computers, services, or any resource connected to the Internet. A DNS resolves queries for URLs into IP addresses for the purpose of locating computer services and…

Distributed, Parallel, and Cluster Computing · Computer Science 2020-07-09 Altan Cakir , Yousef Alkhanafseh , Esra Karabiyik , Erhan Kurubas , Rabia Burcu Bunyak , Cenk Anil Bahcevan

Online social networks are used frequently by many people: Staying in contact with friends and sharing experiences with them is very important. However, users are increasingly concerned that their data will end up in the hands of strangers…

Cryptography and Security · Computer Science 2020-10-09 Fabian Schillinger , Christian Schindelhauer

The identification of cyberattacks which target information and communication systems has been a focus of the research community for years. Network intrusion detection is a complex problem which presents a diverse number of challenges. Many…

Cryptography and Security · Computer Science 2022-10-07 Borja Molina-Coronado , Usue Mori , Alexander Mendiburu , José Miguel-Alonso

The DNS infrastructure is infamous for facilitating reflective amplification attacks. Various countermeasures such as server shielding, access control, rate limiting, and protocol restrictions have been implemented. Still, the threat…

Cryptography and Security · Computer Science 2025-10-23 Maynard Koch , Florian Dolzmann , Thomas C. Schmidt , Matthias Wählisch

DNS dynamic updates represent an inherently vulnerable mechanism deliberately granting the potential for any host to dynamically modify DNS zone files. Consequently, this feature exposes domains to various security risks such as domain…

Cryptography and Security · Computer Science 2024-06-06 Yevheniya Nosyk , Maciej Korczyński , Carlos H. Gañán , Michał Król , Qasim Lone , Andrzej Duda

Growing concern for individual privacy, driven by an increased public awareness of the degree to which many of our electronic activities are tracked by interested third parties (e.g. Google knows what I am thinking before I finish entering…

Cryptography and Security · Computer Science 2017-11-23 Aaron Gibson , Hamilton Scott Clouse

The Internet's TCP/IP architecture was designed for resilient packet delivery between hosts identified by IP addresses. Over time, however, the consolidation of applications and services into large-scale platforms built on that universal…

Networking and Internet Architecture · Computer Science 2026-05-18 Geoff Huston , Lixia Zhang

We perform a passive measurement study investigating how a Protective DNS service might perform in a Research & Education Network serving hundreds of member institutions. Utilizing freely-available DNS blocklists consisting of domain names…

Cryptography and Security · Computer Science 2025-10-30 David Plonka , Branden Palacio , Debbie Perouli

The DNS HTTPS resource record is a new DNS record type designed for the delivery of configuration information and parameters required to initiate connections to HTTPS network services. In addition, it is a key enabler for TLS Encrypted…

Networking and Internet Architecture · Computer Science 2024-09-13 Hongying Dong , Yizhe Zhang , Hyeonmin Lee , Shumon Huque , Yixin Sun

Focus on Deep Neural Network based malicious and normal computer Network Traffic classification. (such as attacks, phishing, any other illegal activity and normal traffic identification). In this paper, the main idea is to review, existed…

Networking and Internet Architecture · Computer Science 2024-09-02 Md. Ariful Haque , Rajesh Palit

The Domain Name System Security Extensions (DNSSEC) are critical for preventing DNS spoofing, yet its specifications contain ambiguities and vulnerabilities that elude traditional "break-and-fix" approaches. A holistic, foundational…

Cryptography and Security · Computer Science 2025-12-15 Qifan Zhang , Zilin Shen , Imtiaz Karim , Elisa Bertino , Zhou Li

Spam domains are sources of unsolicited mails and one of the primary vehicles for fraud and malicious activities such as phishing campaigns or malware distribution. Spam domain detection is a race: as soon as the spam mails are sent, taking…

Cryptography and Security · Computer Science 2022-05-05 Simon Fernandez , Maciej Korczyński , Andrzej Duda

The majority of electronic communication today happens either via email or chat. Thanks to the use of standardised protocols electronic mail (SMTP, IMAP, POP3) and instant chat (XMPP, IRC) servers can be deployed in a decentralised but…

Cryptography and Security · Computer Science 2016-01-26 Ralph Holz , Johanna Amann , Olivier Mehani , Matthias Wachs , Mohamed Ali Kaafar