A survey on DNS attack detection and security protection
With the gradual evolution of the traditional Internet to “Internet+”, the domain name system (DNS) had been continuously expanding from basic address resolution to new models such as comprehensive perception and reliable transmission.Due to the diverse functions and the extensive coverage of DNS in...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Beijing Xintong Media Co., Ltd
2022-09-01
|
| Series: | Dianxin kexue |
| Subjects: | |
| Online Access: | http://www.telecomsci.com/zh/article/doi/10.11959/j.issn.1000-0801.2022248/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841530669846495232 |
|---|---|
| author | Jianwu ZHANG Yanjun AN Huangyan DENG |
| author_facet | Jianwu ZHANG Yanjun AN Huangyan DENG |
| author_sort | Jianwu ZHANG |
| collection | DOAJ |
| description | With the gradual evolution of the traditional Internet to “Internet+”, the domain name system (DNS) had been continuously expanding from basic address resolution to new models such as comprehensive perception and reliable transmission.Due to the diverse functions and the extensive coverage of DNS in the new scenario, it will cause serious consequences once attacked.Therefore, the research on DNS attack detection and security protection continues and attracts more and more attention.Firstly, several common DNS attacks were introduced, including DNS spoofing, DNS covert channel, DNS distributed denial of service (DDoS) attack, DNS reflection amplification attacks, and malicious DGA domain names.Subsequently, these DNS attack detection technologies were systematically analyzed and summarized from the machine learning perspective.Then, the DNS security protection technologies were sorted out in decentralization, authenticated encryption and limited resolution.Finally, some future research directions were proposed. |
| format | Article |
| id | doaj-art-62590bd2153040bfbe330c54d70aeda3 |
| institution | Kabale University |
| issn | 1000-0801 |
| language | zho |
| publishDate | 2022-09-01 |
| publisher | Beijing Xintong Media Co., Ltd |
| record_format | Article |
| series | Dianxin kexue |
| spelling | doaj-art-62590bd2153040bfbe330c54d70aeda32025-01-15T03:00:07ZzhoBeijing Xintong Media Co., LtdDianxin kexue1000-08012022-09-013811759576867A survey on DNS attack detection and security protectionJianwu ZHANGYanjun ANHuangyan DENGWith the gradual evolution of the traditional Internet to “Internet+”, the domain name system (DNS) had been continuously expanding from basic address resolution to new models such as comprehensive perception and reliable transmission.Due to the diverse functions and the extensive coverage of DNS in the new scenario, it will cause serious consequences once attacked.Therefore, the research on DNS attack detection and security protection continues and attracts more and more attention.Firstly, several common DNS attacks were introduced, including DNS spoofing, DNS covert channel, DNS distributed denial of service (DDoS) attack, DNS reflection amplification attacks, and malicious DGA domain names.Subsequently, these DNS attack detection technologies were systematically analyzed and summarized from the machine learning perspective.Then, the DNS security protection technologies were sorted out in decentralization, authenticated encryption and limited resolution.Finally, some future research directions were proposed.http://www.telecomsci.com/zh/article/doi/10.11959/j.issn.1000-0801.2022248/domain name systemDNS attack detectionsecurity protectionmachine learning |
| spellingShingle | Jianwu ZHANG Yanjun AN Huangyan DENG A survey on DNS attack detection and security protection Dianxin kexue domain name system DNS attack detection security protection machine learning |
| title | A survey on DNS attack detection and security protection |
| title_full | A survey on DNS attack detection and security protection |
| title_fullStr | A survey on DNS attack detection and security protection |
| title_full_unstemmed | A survey on DNS attack detection and security protection |
| title_short | A survey on DNS attack detection and security protection |
| title_sort | survey on dns attack detection and security protection |
| topic | domain name system DNS attack detection security protection machine learning |
| url | http://www.telecomsci.com/zh/article/doi/10.11959/j.issn.1000-0801.2022248/ |
| work_keys_str_mv | AT jianwuzhang asurveyondnsattackdetectionandsecurityprotection AT yanjunan asurveyondnsattackdetectionandsecurityprotection AT huangyandeng asurveyondnsattackdetectionandsecurityprotection AT jianwuzhang surveyondnsattackdetectionandsecurityprotection AT yanjunan surveyondnsattackdetectionandsecurityprotection AT huangyandeng surveyondnsattackdetectionandsecurityprotection |