Taxonomy and Adversarial Strategies of Random Subdomain Attacks

被引:1
作者
Griffioen, Harm [1 ]
Doerr, Christian [1 ]
机构
[1] Delft Univ Technol, Cybersecur Grp, Mourik Broekmanweg 6, Delft, Netherlands
来源
2019 10TH IFIP INTERNATIONAL CONFERENCE ON NEW TECHNOLOGIES, MOBILITY AND SECURITY (NTMS) | 2019年
关键词
cyber threat intelligence; random subdomain attack; DNS; DDoS;
D O I
10.1109/ntms.2019.8763820
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
Ever since the introduction of the domain name system (DNS), attacks on the DNS ecosystem have been a steady companion. Over time, targets and techniques have shifted, and in the recent past a new type of attack on the DNS has emerged. In this paper we report on the DNS random subdomain attack, querying floods of non-existent subdomains, intended to cause a denial-of-service on DNS servers. Based on five major attacks in 2018 obtained through backscatter measurements in a large network telescope, we show the techniques pursued by adversaries, and develop a taxonomy of strategies of this attack.
引用
收藏
页数:5
相关论文
共 10 条
  • [1] Alonso R., 2016, SENSORS
  • [2] [Anonymous], 2016, Dyn Analysis Summary of Friday October 21 Attack
  • [3] [Anonymous], 2016, Tech. Rep.,
  • [4] Quantifying the Spectrum of Denial-of-Service Attacks through Internet Backscatter
    Blenn, Norbert
    Ghiette, Vincent
    Doerr, Christian
    [J]. PROCEEDINGS OF THE 12TH INTERNATIONAL CONFERENCE ON AVAILABILITY, RELIABILITY AND SECURITY (ARES 2017), 2017,
  • [5] Cloudflare, 2018, BGP leaks and cryptocurrencies
  • [6] Degroote T., 2014, TECH REP
  • [7] Gonsalves A., 2013, CSO
  • [8] Luo X., 2018, INT C COMP SCI ART I
  • [9] Moura G., 2016, INT MEAS C
  • [10] Takeuchi Y., 2016, CSAI
1