English
Related papers

Related papers: Study on Domain Name System (DNS) Abuse: Technical…

200 papers

DNS dynamic updates represent an inherently vulnerable mechanism deliberately granting the potential for any host to dynamically modify DNS zone files. Consequently, this feature exposes domains to various security risks such as domain…

Cryptography and Security · Computer Science 2024-06-06 Yevheniya Nosyk , Maciej Korczyński , Carlos H. Gañán , Michał Król , Qasim Lone , Andrzej Duda

Domain fronting is a network communication technique that involves leveraging (or abusing) content delivery networks (CDNs) to disguise the final destination of network packets by presenting them as if they were intended for a different…

Cryptography and Security · Computer Science 2024-09-02 Karthika Subramani , Roberto Perdisci , Pierros Skafidas

The domain name system (DNS) is a crucial backbone of the Internet and millions of new domains are created on a daily basis. While the vast majority of these domains are legitimate, adversaries also register new hostnames to carry out…

Cryptography and Security · Computer Science 2019-02-25 Dennis Tatang , Florian Quinkert , Nico Dolecki , Thorsten Holz

Cyber-attacks have been one of the deadliest attacks in today's world. One of them is DDoS (Distributed Denial of Services). It is a cyber-attack in which the attacker attacks and makes a network or a machine unavailable to its intended…

Cryptography and Security · Computer Science 2022-01-25 Aman Rangapur , Tarun Kanakam , Ajith Jubilson

The Domain Name System (DNS) is a critical service that enables domain names to be converted to IP addresses (or vice versa); consequently, it is generally permitted through enterprise security systems (e.g., firewalls) with little…

Networking and Internet Architecture · Computer Science 2024-10-28 Minzhao Lyu , Hassan Habibi Gharakheili , Craig Russell , Vijay Sivaraman

Domain Name System (DNS) domains became Internet-level identifiers for entities (like companies, organizations, or individuals) hosting services and sharing resources over the Internet. Domains can specify a set of security policies (such…

Cryptography and Security · Computer Science 2018-04-13 Gaurav Varshney , Pawel Szalachowski

In this paper we introduce an intrusion detection system for Denial of Service (DoS) attacks against Domain Name System (DNS). Our system architecture consists of two most important parts: a statistical preprocessor and a neural network…

Cryptography and Security · Computer Science 2009-12-10 Samaneh Rastegari , M. Iqbal Saripan , Mohd Fadlee A. Rasid

Online government services are increasingly regarded as critical national infrastructure. Because these services directly influence public trust, any disruption can have significant societal and political consequences. Yet their supporting…

Networking and Internet Architecture · Computer Science 2026-04-22 Agung Septiadi , Minzhao Lyu , Hassan Habibi Gharakheili , Vijay Sivaraman

Domain name system (DNS) is a crucial part of the Internet, yet has been widely exploited by cyber attackers. Apart from making static methods like blacklists or sinkholes infeasible, some weasel attackers can even bypass detection systems…

Cryptography and Security · Computer Science 2019-09-05 Xiaoqing Sun , Mingkai Tong , Jiahai Yang

This paper proposes a defense scheme against malicious use of DNS tunnel. A tunnel validator is designed to provide trustworthy tunnel-aware defensive recursive service. In addition to the detection algorithm of malicious tunnel domains,…

Cryptography and Security · Computer Science 2016-05-05 Zheng Wang

The Domain Name System (DNS) is one of the most fundamental components of the Internet. While glue is widely used and heavily relied on in DNS operations, there is little thinking about the necessity, complexity, and venerability of such…

Cryptography and Security · Computer Science 2016-05-05 Zheng Wang

Domain name system communication may provide sensitive information on users' Internet activity. DNS-over-TLS and DNS-over-HTTPS are proposals aiming at increasing the privacy of Internet end users. In this paper we present an overview of…

Networking and Internet Architecture · Computer Science 2022-04-11 Kamil Jerabek , Ondrej Rysavy , Ivana Burgetova

Domain Name System (DNS) is a hierarchical distributed naming system for computers, services, or any resource connected to the Internet. A DNS resolves queries for URLs into IP addresses for the purpose of locating computer services and…

Distributed, Parallel, and Cluster Computing · Computer Science 2020-07-09 Altan Cakir , Yousef Alkhanafseh , Esra Karabiyik , Erhan Kurubas , Rabia Burcu Bunyak , Cenk Anil Bahcevan

With more than 294 million registered domain names as of late 2015, the domain name ecosystem has evolved to become a cornerstone for the operation of the Internet. Domain names today serve everyone, from individuals for their online…

Cryptography and Security · Computer Science 2016-03-10 Jeffrey Spaulding , Shambhu Upadhyaya , Aziz Mohaisen

Distributed Denial-of-Service (DDoS) attacks exhaust resources, leaving a server unavailable to legitimate clients. The Domain Name System (DNS) is a frequent target of DDoS attacks. Since DNS is a critical infrastructure service,…

Cryptography and Security · Computer Science 2022-09-16 A S M Rizvi , Jelena Mirkovic , John Heidemann , Wesley Hardaker , Robert Story

Domain Name Service is a trusted protocol made for name resolution, but during past years some approaches have been developed to use it for data transfer. DNS Tunneling is a method where data is encoded inside DNS queries, allowing…

Cryptography and Security · Computer Science 2020-06-16 Franco Palau , Carlos Catania , Jorge Guerra , Sebastian Garcia , Maria Rigaki

Malicious actors exploit the DNS namespace to launch spam campaigns, phishing attacks, malware, and other harmful activities. Combating these threats requires visibility into domain existence, ownership and nameservice activity that the DNS…

Networking and Internet Architecture · Computer Science 2024-09-26 Raffaele Sommese , Gautam Akiwate , Antonia Affinito , Moritz Müller , Mattijs Jonker , KC Claffy

This paper details data science research in the area of Cyber Threat Intelligence applied to a specific type of Distributed Denial of Service (DDoS) attack. We study a DDoS technique prevalent in the Domain Name System (DNS) for which…

Cryptography and Security · Computer Science 2019-07-23 Renée Burton

Anti-malware agents typically communicate with their remote services to share information about suspicious files. These remote services use their up-to-date information and global context (view) to help classify the files and instruct their…

Cryptography and Security · Computer Science 2021-09-24 Asaf Nadler , Ron Bitton , Oleg Brodt , Asaf Shabtai

A distributed denial-of-service (DDoS) attack is an attack wherein multiple compromised computer systems flood the bandwidth and/or resources of a target, such as a server, website or other network resource, and cause a denial of service…

Cryptography and Security · Computer Science 2020-08-05 Rajat Tandon