Abstract
The Internet Domain Naming System (DNS) is one of the pillars for the Internet and has been the subject of various Distributed Denial-of-Service (DDoS) attacks over the years. As a countermeasure, the DNS infrastructure has been engineered with a series of replication measures, such as relying on multiple authoritative name servers and using IP anycast. Even though these measures have been in place, we have seen that, when servers rely on third-party DNS providers for reliable services, there may be certain levels of infrastructure centralization. In this case, an attack against a DNS target might affect other authoritative DNS servers sharing part of the infrastructure with the intended victim. However, measuring such levels of infrastructure sharing is a daunting task, given that researchers typically do not have access to DNS provider internals. In this paper, we introduce a methodology and associated tool dnstracker that allows measuring, to various degrees, the level of both concentration and shared infrastructure using active DNS measurements. As a case study, we analyze the authoritative name servers of all domains of the Alexa Top 1 Million most visited websites. Our results show that, in some cases, up to 12.000 authoritative name servers share the same underlying infrastructure of a third-party DNS provider. As such, in the event of an attack, those authoritative DNS servers have increased the probability of suffering from collateral damage.
Original language | English |
---|---|
Title of host publication | Advanced Information Networking and Applications |
Subtitle of host publication | Proceedings of the 34th International Conference on Advanced Information Networking and Applications, AINA 2020 |
Editors | Leonard Barolli, Flora Amato, Francesco Moscato, Tomoya Enokido, Makoto Takizawa |
Place of Publication | Cham |
Publisher | Springer |
Pages | 871-882 |
Number of pages | 12 |
ISBN (Electronic) | 978-3-030-44041-1 |
ISBN (Print) | 978-3-030-44040-4 |
DOIs | |
Publication status | Published - 2020 |
Event | 34th International Conference on Advanced Information Networking and Applications - Caserta, Italy Duration: 15 Apr 2020 → 17 Apr 2020 Conference number: 34 http://voyager.ce.fit.ac.jp/conf/aina/2020/ |
Publication series
Name | Advances in Intelligent Systems and Computing |
---|---|
Volume | 1151 |
ISSN (Print) | 2194-5357 |
ISSN (Electronic) | 2194-5365 |
Conference
Conference | 34th International Conference on Advanced Information Networking and Applications |
---|---|
Abbreviated title | AINA-2020 |
Country/Territory | Italy |
City | Caserta |
Period | 15/04/20 → 17/04/20 |
Other | Cancelled event due to COVID-19. Papers are only published |
Internet address |
Bibliographical note
Cancelled event due to COVID-19. Papers are only publishedKeywords
- Centralization
- Domain Name System
- Measurements