vDNS: Securing DNS from Amplification Attacks

被引:0
|
作者
Nesary, Mohammad Mashud [1 ]
Aydeger, Abdullah [1 ]
机构
[1] Southern Illinois Univ, Dept Comp Sci, Carbondale, IL 62901 USA
来源
2022 IEEE INTERNATIONAL BLACK SEA CONFERENCE ON COMMUNICATIONS AND NETWORKING (BLACKSEACOM) | 2022年
关键词
Software-defined networks; Network Function Virtualization; vDNS; DNS Amplification Attack;
D O I
10.1109/BLACKSEACOM54372.2022.9858278
中图分类号
TM [电工技术]; TN [电子技术、通信技术];
学科分类号
0808 ; 0809 ;
摘要
Emerging Network Function Virtualization (NFV) technology has brought tremendous transformation to how the networking equipment operates. Domain Name System (DNS) has been the de facto protocol and standard for address resolution on the Internet. In this work, we introduce DNS servers as a part of the NFV framework, where the functionality of DNS can be provided via the virtual DNS (i.e., vDNS) servers. We investigate potential threats against vDNS where the DNS server is either attacked or exploited. Then, we propose our detection and mitigation strategies against DNS Amplification Attacks and discuss the high potential of scalability and agility that vDNS would bring to the traditional DNS infrastructure.
引用
收藏
页码:102 / 106
页数:5
相关论文
共 50 条
  • [1] Detecting DNS Amplification Attacks
    Kambourakis, Georgios
    Moschos, Tassos
    Geneiatakis, Dimitris
    Gritzalis, Stefanos
    [J]. CRITICAL INFORMATION INFRASTRUCTURES SECURITY, 2008, 5141 : 185 - 196
  • [2] A fair solution to DNS amplification attacks
    Kambourakis, Georgios
    Moschos, Tassos
    Geneiatakis, Dimitris
    Gritzalis, Stefanos
    [J]. SECOND INTERNATIONAL ANNUAL WORKSHOP ON DIGITAL FORENSICS AND INCIDENT ANALYSIS, PROCEEDINGS, 2007, : 38 - +
  • [3] DNS Amplification & DNS Tunneling Attacks Simulation, Detection and Mitigation Approaches
    Sanjay
    Rajendran, Balaji
    Shetty, Pushparaj D.
    [J]. PROCEEDINGS OF THE 5TH INTERNATIONAL CONFERENCE ON INVENTIVE COMPUTATION TECHNOLOGIES (ICICT-2020), 2020, : 230 - 236
  • [4] Preventing DNS Amplification Attacks Using the History of DNS Queries with SDN
    Kim, Soyoung
    Lee, Sora
    Cho, Geumhwan
    Ahmed, Muhammad Ejaz
    Jeong, Jaehoon
    Kim, Hyoungshick
    [J]. COMPUTER SECURITY - ESORICS 2017, PT II, 2017, 10493 : 135 - 152
  • [5] Characterizing Optimal DNS Amplification Attacks and Effective Mitigation
    MacFarland, Douglas C.
    Shue, Craig A.
    Kalafut, Andrew J.
    [J]. PASSIVE AND ACTIVE MEASUREMENT (PAM 2015), 2015, 8995 : 15 - 27
  • [6] A Behavior-based Method for Detecting DNS Amplification Attacks
    Cai, Longzhu
    Feng, Yaokai
    Kawamoto, Junpei
    Sakurai, Kouichi
    [J]. 2016 10TH INTERNATIONAL CONFERENCE ON INNOVATIVE MOBILE AND INTERNET SERVICES IN UBIQUITOUS COMPUTING (IMIS), 2016, : 608 - 613
  • [7] Countering DNS Amplification Attacks Based on Analysis of Outgoing Traffic
    Sagatov, Evgeny
    Mayhoub, Samara
    Sukhov, Andrei
    Calyam, Prasad
    [J]. Journal of Communications and Information Networks, 2023, 8 (02) : 111 - 121
  • [8] The best bang for the byte: Characterizing the potential of DNS amplification attacks
    MacFarland, Douglas C.
    Shue, Craig A.
    Kalafut, Andrew J.
    [J]. COMPUTER NETWORKS, 2017, 116 : 12 - 21
  • [9] DNS Amplification Based DDoS Attacks in SDN Environment: Detection and Mitigation
    Gupta, Vishal
    Kochar, Amrit
    Saharan, Shail
    Kulshrestha, Rakhee
    [J]. 2019 IEEE 4TH INTERNATIONAL CONFERENCE ON COMPUTER AND COMMUNICATION SYSTEMS (ICCCS 2019), 2019, : 473 - 478
  • [10] Large-scale empirical evaluation of DNS and SSDP amplification attacks
    Anagnostopoulos, Marios
    Lagos, Stavros
    Kambourakis, Georgios
    [J]. JOURNAL OF INFORMATION SECURITY AND APPLICATIONS, 2022, 66
12345