DNS Security Control Measures: A heuristic-based Approach to Identify Real-time incidents

Afonso, Joao; Veiga, Pedro

Home // ICN 2011, The Tenth International Conference on Networks // View article

DNS Security Control Measures: A heuristic-based Approach to Identify Real-time incidents

Authors:
Joao Afonso
Pedro Veiga

Keywords: DNS, security, intrusion detection system; real-time, monitoring

Abstract:
There is no doubt that one of the most critical components of the Internet is the DNS – Domain Name System. In this paper, we propose a solution to strengthen the security of DNS servers, namely those associated with Top Level Domains (TLD), by using a system that identifies patterns of potentially harmful traffic and isolates it. The proposed solution has been developed and tested at FCCN, the TLD manager for the .PT domain. The system consists of network sensors that monitor the network in real-time and can dynamically detect, prevent, or limit the scope of the attempted intrusions or other types of attacks to the DNS service, thus improving it’s global availability.

Pages: 127 to 132

Copyright: Copyright (c) IARIA, 2011

Publication date: January 23, 2011

Published in: conference

ISSN: 2308-4413

ISBN: 978-1-61208-113-7

Location: St. Maarten, The Netherlands Antilles

Dates: from January 23, 2011 to January 28, 2011