DNSxP: Enhancing data exfiltration protection through data plane programmability

According to a 2019 Radware report, guarding sensitive data is the highest priority area for investment in cyber security. This no surprise given high number of reported breach incidents annually, and implication these on individuals or organisations targeted. Data exfiltration key stage this form cyber-attack, use Domain Name System protocol popular due essential nature network communication. paper presents DNS Protection (DNSxP) security architecture leveraging Software-Defined Networking Plane Programmability. The solution developed based analysis different malicious cases transmitting over protocol. By performing coarse-grained packet filtering plane, clear benign traffic can be identified quickly, while suspicious passed additional controls at SDN controller classification. As results demonstrate, approach offers combined benefit reducing loss during an attack resource consumption.