Anomaly detection of domain name system (DNS) query traffic at top level domain servers
نویسندگان
چکیده
منابع مشابه
Anomaly detection of domain name system (DNS) query traffic at top level domain servers
Major network events can be reflected on domain name system (DNS) traffic at the top level server on the DNS hierarchical structure. This paper pursues a novel approach to detect the DNS traffic anomaly of 5.19 events in China at CN top level domain server using covariance analysis. We normalize, expand and average the covariance changes for different length of time slice to enhance the robustn...
متن کاملMeasuring the Placement of DNS Servers in Top-Level-Domain
DNS is a critical infrastructure of the global Internet. To assure DNS’s efficient and robust operations, each domain, especially each of the Top-Level-Domains (TLDs), should deploy multiple redundant nameservers in diverse locations. To assess the robustness of TLD nameserver deployment regarding the nameserver redundancy and location diversity, we conduct a measurement study by sending specia...
متن کاملMeasuring Query Latency of Top Level DNS Servers
We surveyed the latency of upper DNS hierarchy from 19593 vantage points around the world to investigate the impact of uneven distribution of top level DNS servers on end-user latency. Our findings included: 1) generally top level DNS servers served Internet users efficiently, with median latency 20.26ms for root, 42.64ms for .com/.net, 39.07ms for .org; 2) quality of service was uneven, Europe...
متن کاملMining IP to Domain Name Interactions to Detect DNS Flood Attacks on Recursive DNS Servers
The Domain Name System (DNS) is a critical infrastructure of any network, and, not surprisingly a common target of cybercrime. There are numerous works that analyse higher level DNS traffic to detect anomalies in the DNS or any other network service. By contrast, few efforts have been made to study and protect the recursive DNS level. In this paper, we introduce a novel abstraction of the recur...
متن کاملEstimation of domain name system ( DNS ) server load distribution
Domain name system (DNS) resolution service is usually provisioned by multiple authoritative servers for performance and robustness. Estimating the query load distribution among multiple authoritative servers is one of the key issues arising with DNS server load balancing and optimization. We propose an analytical model of Round-Trip-Time (RTT)-sensitive server selections consisting of cache se...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Scientific Research and Essays
سال: 2011
ISSN: 1992-2248
DOI: 10.5897/sre11.439