Fraunhofer-Gesellschaft

Publica

Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Motivation for behaviour-based DNS security

A taxonomy of DNS-related Internet threats
 
: Chatzis, N.

:

Penalver, L. ; IEEE Computer Society:
International Conference on Emerging Security Information, Systems, and Technologies, SECURWARE 2007 : Valencia, Spain, 14 - 20 October 2007
Los Alamitos, Calif.: IEEE Computer Society Press, 2007
ISBN: 978-0-7695-2989-9
ISBN: 0-7695-2989-5
S.36-41
International Conference on Emerging Security Information, Systems, and Technologies (SECURWARE) <1, 2007, Valencia>
Englisch
Konferenzbeitrag
Fraunhofer FOKUS ()
DNS; email worm; mitigation

Abstract
The Domain Name System is the largest distributed system in operation today and a critical infrastructure component that can be regarded as one nervous system of the current Internet. Because of its critical role DNS is involved in manifold Internet attacks both against the system itself or other Internet hosts. This paper presents an exhaustive analysis of Internet threats involving the DNS classifying them in three categories: name server vulnerabilities, authenticity and integrity attacks, and consumption attacks. Attacks consuming Internet infrastructure resources are inadequately addressed today and from a network operator perspective they remain the major operational security issue. We show that many consumption attacks cause anomalies in DNS traffic, which implies that behaviour-based security on the name servers is a promising research area against this class of Internet attacks.

: http://publica.fraunhofer.de/dokumente/N-155711.html