Author:
Fang Lei,Wu Hongbin,Qian Kexiang,Wang Wenhui,Han Longxi
Abstract
Abstract
Domain Name System (DNS) is a basic and important services on the Internet. However, Distributed Denial of Service (DDoS) has been a threat to the security and stability of DNS for a long time. In this paper, we take a review of DDoS attacks based on DNS aiming to make a better understanding of it. Firstly, we analyse the security vulnerabilities of DNS related to denial-of-service attack. Then we discuss the classification of DNS DDoS attacks, and divide them into four categories according to the attack mode. Finally, we summarize the existing defense methods of two aspects. We aim to get a better understanding of the DDoS attacks based on DNS and expand the understanding of DDoS attacks.
Subject
General Physics and Astronomy
Reference31 articles.
1. Denial of Service against the Domain Name System;Cheung;IEEE Security & Privacy,2006
2. DNS amplification attacks;Vaughn,2006
3. An Analysis of Using Reflectors for Distributed Denial-of-Service Attacks;Paxson;ACM SIGCOMM Computer Communication Review,2001
4. DNS amplification attack revisited;Anagnostopoulos;Computers & Security,2013
5. Evaluation of TFTP DDoS amplification attack;Sieklik;Computers & Security,2016
Cited by
1 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献