DNS Protection Against Spoofing and Poisoning Attacks

被引：7

作者：

Hussain, Mohammed Abdulridha ^{[1
,2
]}

Jin, Hai ^{[1
]}

Hussien, Zaid Alaa ^{[1
,3
]}

Abduljabbar, Zaid Ameen ^{[1
,2
]}

Abbdal, Salah H. ^{[1
]}

Ibrahim, Ayad ^{[2
]}

机构：

[1] Huazhong Univ Sci & Technol, Sch Comp Sci & Technol, Serv Comp Technol & Syst Lab, Cluster & Grid Comp Lab, Wuhan 430074, Peoples R China

[2] Univ Basrah, Basrah, Iraq

[3] Southern Tech Univ, Basrah, Iraq

来源：

2016 3RD INTERNATIONAL CONFERENCE ON INFORMATION SCIENCE AND CONTROL ENGINEERING (ICISCE) | 2016年

关键词：

DNS; DNS-spoofing; DNS cache poisoning; DNS protection;

D O I：

10.1109/ICISCE.2016.279

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Domain name system is among the core part of TCP/IP protocol suite and the standard protocol used by the Internet. The domain name system consists of mapped website names with Internet protocol, which facilitates browsing by not requiring users to remember numeric notation addresses. The nature of the system, which involves transferring information in plain text, makes it vulnerable to security attacks. The domain name system suffers from spoofing and cache poisoning attacks that are intended to steal the private information of users. In this paper, a scheme is proposed to prevent the aforementioned attacks by using an asymmetric cipher to encrypt the important information in messages and to protect these messages from manipulation. The proposed scheme is examined and implemented using Linux platform and C programming language. The proposed scheme protects DNS against spoofing and poisoning attacks while the results show small fraction of delay in time comparing with the applied DNS. There are also additional commercial benefits since it does not result in additional costs.

引用

页码：1308 / 1312

页数：5

共 50 条

[1] DNS-Based Defense against IP Spoofing Attacks
Moriyama, Eimatsu
Takahashi, Takeshi
Miyamoto, Daisuke
NEURAL INFORMATION PROCESSING, ICONIP 2012, PT V, 2012, 7667 : 599 - 609
[2] An Approach of DNS Protection Against DDoS Attacks
Georgiev, Ivan
Nikolova, Kamelia
2017 13TH INTERNATIONAL CONFERENCE ON ADVANCED TECHNOLOGIES, SYSTEMS AND SERVICES IN TELECOMMUNICATIONS (TELSIKS), 2017, : 140 - 143
[3] Detection and prevention of DNS spoofing attacks.
Maksutov, Artem A.
Cherepanov, Ilya A.
Alekseev, Maksim S.
2017 SIBERIAN SYMPOSIUM ON DATA SCIENCE AND ENGINEERING (SSDSE), 2017, : 84 - 87
[4] An On-Demand Defense Scheme Against DNS Cache Poisoning Attacks
Wang, Zheng
Yu, Shui
Rose, Scott
SECURITY AND PRIVACY IN COMMUNICATION NETWORKS, SECURECOMM 2017, 2018, 238 : 793 - 807
[5] CAuth - Protecting DNS application from spoofing attacks
Sahri, Nm
Okamura, Koji
INTERNATIONAL JOURNAL OF COMPUTER SCIENCE AND NETWORK SECURITY, 2016, 16 (06): : 125 - 134
[6] Reducing DNS Cache Poisoning Attacks
Mohan, Jayashree
Puranik, Shruthi
Chandrasekaran, K.
ICACCS 2015 PROCEEDINGS OF THE 2ND INTERNATIONAL CONFERENCE ON ADVANCED COMPUTING & COMMUNICATION SYSTEMS, 2015,
[7] Poster: On the Capability of DNS Cache Poisoning Attacks
Wang, Zheng
CCS'14: PROCEEDINGS OF THE 21ST ACM CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, 2014, : 1523 - 1525
[8] A Revisit of DNS Kaminsky Cache Poisoning Attacks
Wang, Zheng
2015 IEEE GLOBAL COMMUNICATIONS CONFERENCE (GLOBECOM), 2015,
[9] WSEC DNS: Protecting Recursive DNS Resolvers from Poisoning Attacks
Perdisci, Roberto
Antonakakis, Manos
Luo, Xiapu
Lee, Wenke
2009 IEEE/IFIP INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS & NETWORKS (DSN 2009), 2009, : 3 - +
[10] ARP Cache Rectification for Defending Spoofing and Poisoning Attacks
Pandey, Alok
Saini, Jatinderkumar R.
PROCEEDINGS OF THE 10TH INDIACOM - 2016 3RD INTERNATIONAL CONFERENCE ON COMPUTING FOR SUSTAINABLE GLOBAL DEVELOPMENT, 2016, : 3487 - 3492

← 1 2 3 4 5 →