| Συγγραφείς: | Kambourakis G., Moschos T., Geneiatakis D., Gritzalis S. |
|---|
| Τίτλος: | Detecting DNS Amplifications Attacks |
|---|
| Συνέδριο: | IFIP IEEE CRITIS’07 2nd International Workshop on Critical Information Infrastructures Security |
|---|
| Editors: | J. Lopez, B. Hammerli |
|---|
| Ed: | Όχι |
|---|
| Eds: | Ναι |
|---|
| Σελίδες: | 185-196 |
|---|
| Να εμφανιστεί: | Όχι |
|---|
| Μήνας: | |
|---|
| Έτος: | 2008 |
|---|
| Τόπος: | Malaga, Spain |
|---|
| Εκδότης: | Lecture Notes in Computer Science LNCS 5141, Springer |
|---|
| Δεσμός: | http://link.springer.com/content/pdf/10.1007%2F978-3-540-89173-4_16.pdf |
|---|
| Όνομα αρχείου: | C18_CRITIS_2008.pdf##^^&&767342989.pdf |
|---|
| Περίληψη: | DNS amplification attacks massively exploit open recursive DNS servers mainly for performing bandwidth consumption DDoS attacks. The amplification effect lies in the fact that DNS response messages may be substantially larger than DNS query messages. In this paper, we present and evaluate a novel and practical method that is able to distinguish between authentic and bogus DNS replies. The proposed scheme can effectively protect local DNS servers acting both proactively and reactively. Our analysis and the corresponding real-usage experimental results demonstrate that the proposed scheme offers a flexible, robust and effective solution. |
|---|
English