Back to Search Start Over

A survey on DNS attack detection and security protection.

Authors :
ZHANG Jianwu
AN Yanjun
DENG Huangyan
Source :
Telecommunications Science; Sep2022, Vol. 38 Issue 9, p1-17, 17p
Publication Year :
2022

Abstract

With the gradual evolution of the traditional Internet to "Internet+", the domain name system (DNS) had been continuously expanding from basic address resolution to new models such as comprehensive perception and reliable transmission. Due to the diverse functions and the extensive coverage of DNS in the new scenario, it will cause serious consequences once attacked. Therefore, the research on DNS attack detection and security protection continues and attracts more and more attention. Firstly, several common DNS attacks were introduced, including DNS spoofing, DNS covert channel, DNS distributed denial of service (DDoS) attack, DNS reflection amplification attacks, and malicious DGA domain names. Subsequently, these DNS attack detection technologies were systematically analyzed and summarized from the machine learning perspective. Then, the DNS security protection technologies were sorted out in decentralization, authenticated encryption and limited resolution. Finally, some future research directions were proposed. [ABSTRACT FROM AUTHOR]

Details

Language :
Chinese
ISSN :
10000801
Volume :
38
Issue :
9
Database :
Complementary Index
Journal :
Telecommunications Science
Publication Type :
Academic Journal
Accession number :
159772571
Full Text :
https://doi.org/10.11959/j.issn.1000--0801.2022248