Home // ICSNC 2011, The Sixth International Conference on Systems and Networks Communications // View article

Enhancing DNS Security using Dynamic Firewalling with Network Sensors

Authors:
Joao Afonso
Pedro Veiga

Keywords: DNS; security; intrusion detection system; real-time; monitoring.

Abstract:
Security problems that plague network services today are increasing at a dramatic pace especially with the continuous improvement of network transmission rates and the total amount of data exchanged. This translates not only into more incidents but also to new types of attacks with network incidents becoming more and more frequent. A significant part of the attacks occur at Top Level Domains (TLD) who have the task of ensuring the correct functioning of Domain Name System (DNS) zones. In this article we discuss a solution developed and tested at FCCN (Foundation for National Scientific Computing), the TLD manager for the .PT domain. The system consists of a series of network sensors that monitor the network in real-time and can dynamically detect, prevent, or limit the scope of the attempted intrusions or other types of attacks to the DNS service, thus improving its global availability.

Pages: 143 to 148

Copyright: Copyright (c) IARIA, 2011

Publication date: October 23, 2011

Published in: conference

ISSN: 2163-9027

ISBN: 978-1-61208-166-3

Location: Barcelona, Spain

Dates: from October 23, 2011 to October 29, 2011