DNS Amplification & DNS Tunneling Attacks Simulation, Detection and Mitigation Approaches

被引:0
|
作者
Sanjay [1 ]
Rajendran, Balaji [1 ]
Shetty, Pushparaj D. [2 ]
机构
[1] Ctr Dev Adv Comp, Cyber Secur, ITSS, Bangalore, Karnataka, India
[2] Natl Inst Technol Karnataka, MACS, Surathkal, India
来源
PROCEEDINGS OF THE 5TH INTERNATIONAL CONFERENCE ON INVENTIVE COMPUTATION TECHNOLOGIES (ICICT-2020) | 2020年
关键词
DNS Attacks; DNS Reflection; DNS Amplification; DNS Tunneling; DDoS Attack;
D O I
10.1109/icict48043.2020.9112413
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
DNS is a critical infrastructure service of the Internet that translates hostnames to network IP addresses and vice versa. The criticality of DNS can be evidenced by the fact that all most all organizations and enterprises do not block DNS traffic, as it would eventually stop access to the Internet. As a result, attackers have been exploiting the DNS infrastructure and using it as a launchpad for carrying out various attacks e.g. DoS/DDoS, DNS reflection & amplification, DNS tunneling, NXDOMAIN attack, and DNS hijacking, etc. During the historic implementation of DNS protocol, its security was not considered which lead to the exploitation of various vulnerabilities in the DNS infrastructure.
引用
收藏
页码:230 / 236
页数:7
相关论文
共 50 条
  • [1] DNS Amplification Based DDoS Attacks in SDN Environment: Detection and Mitigation
    Gupta, Vishal
    Kochar, Amrit
    Saharan, Shail
    Kulshrestha, Rakhee
    [J]. 2019 IEEE 4TH INTERNATIONAL CONFERENCE ON COMPUTER AND COMMUNICATION SYSTEMS (ICCCS 2019), 2019, : 473 - 478
  • [2] Characterizing Optimal DNS Amplification Attacks and Effective Mitigation
    MacFarland, Douglas C.
    Shue, Craig A.
    Kalafut, Andrew J.
    [J]. PASSIVE AND ACTIVE MEASUREMENT (PAM 2015), 2015, 8995 : 15 - 27
  • [3] Detecting DNS Amplification Attacks
    Kambourakis, Georgios
    Moschos, Tassos
    Geneiatakis, Dimitris
    Gritzalis, Stefanos
    [J]. CRITICAL INFORMATION INFRASTRUCTURES SECURITY, 2008, 5141 : 185 - 196
  • [4] Mitigation Process for DNS Flood Attacks
    Mahjabin, Tasnuva
    Xiao, Yang
    [J]. 2019 16TH IEEE ANNUAL CONSUMER COMMUNICATIONS & NETWORKING CONFERENCE (CCNC), 2019,
  • [5] Preventing DNS Amplification Attacks Using the History of DNS Queries with SDN
    Kim, Soyoung
    Lee, Sora
    Cho, Geumhwan
    Ahmed, Muhammad Ejaz
    Jeong, Jaehoon
    Kim, Hyoungshick
    [J]. COMPUTER SECURITY - ESORICS 2017, PT II, 2017, 10493 : 135 - 152
  • [6] A fair solution to DNS amplification attacks
    Kambourakis, Georgios
    Moschos, Tassos
    Geneiatakis, Dimitris
    Gritzalis, Stefanos
    [J]. SECOND INTERNATIONAL ANNUAL WORKSHOP ON DIGITAL FORENSICS AND INCIDENT ANALYSIS, PROCEEDINGS, 2007, : 38 - +
  • [7] Detection DNS Tunneling Botnets
    Savenko, Bohdan
    Lysenko, Sergii
    Bobrovnikova, Kira
    Savenko, Oleg
    Markowsky, George
    [J]. PROCEEDINGS OF THE THE 11TH IEEE INTERNATIONAL CONFERENCE ON INTELLIGENT DATA ACQUISITION AND ADVANCED COMPUTING SYSTEMS: TECHNOLOGY AND APPLICATIONS (IDAACS'2021), VOL 1, 2021, : 64 - 69
  • [8] Supervised Learning Approaches with Majority Voting for DNS Tunneling Detection
    Aiello, Maurizio
    Mongelli, Maurizio
    Papaleo, Gianluca
    [J]. INTERNATIONAL JOINT CONFERENCE SOCO'14-CISIS'14-ICEUTE'14, 2014, 299 : 463 - 472
  • [9] vDNS: Securing DNS from Amplification Attacks
    Nesary, Mohammad Mashud
    Aydeger, Abdullah
    [J]. 2022 IEEE INTERNATIONAL BLACK SEA CONFERENCE ON COMMUNICATIONS AND NETWORKING (BLACKSEACOM), 2022, : 102 - 106
  • [10] Malicious DNS Tunneling Detection in Real-Traffic DNS Data
    Lambion, Danielle
    Josten, Michael
    Olumofin, Femi
    De Cock, Martine
    [J]. 2020 IEEE INTERNATIONAL CONFERENCE ON BIG DATA (BIG DATA), 2020, : 5736 - 5738
12345