| Presentation | 2021-01-22 [Encouragement Talk] A Study on Detection and Prevention of Stealthy DNS Water Torture Attack Keita Hasegawa, Daishi Kondo, Hideki Tode, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | A distributed denial-of-service (DDoS) attack is a major social problem. As one of the actual attacks, Dyn DNS, the Domain Name System (DNS) provider used by many well-known sites, was subjected to a DNS DDoS attack in 2016, causing these well-known sites to become inaccessible. This paper tackles the DNS water torture attack used in this cyberattack on Dyn DNS as a DDoS attack model. To perform a DNS water torture attack, attackers create a large number of unique fully qualified domain names (FQDNs) with a random label attached to the targeted domain, and then send the attack DNS queries to the targeted authoritative DNS server via DNS cache servers, which brings down the authoritative DNS server. This paper proposes an effective detection and prevention method against stealthy DNS water torture attack that is difficult for attack source side to detect, which quickly detects the occurrence of the attack on the targeted side and performs effective prevention on the attack source side. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | DNS DDoS / DNS water torture attack / FQDN-based whitelist filter |
| Paper # | NS2020-116 |
| Date of Issue | 2021-01-14 (NS) |
| Conference Information | |
| Committee | NS |
|---|---|
| Conference Date | 2021/1/21(2days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Online |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | Network software (Software architecture, Middleware), Network application, SOA/SDP, NGN/IMS/API, Distributed control/Dynamic routing, Grid, NFV, IoT, Network/System reliability, Network/System evaluation, etc. |
| Chair | Akihiro Nakao(Univ. of Tokyo) |
| Vice Chair | Tetsuya Oishi(NTT) |
| Secretary | Tetsuya Oishi(NTT) |
| Assistant | Shinya Kawano(NTT) |
| Paper Information | |
| Registration To | Technical Committee on Network Systems |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | [Encouragement Talk] A Study on Detection and Prevention of Stealthy DNS Water Torture Attack |
| Sub Title (in English) | |
| Keyword(1) | DNS DDoS |
| Keyword(2) | DNS water torture attack |
| Keyword(3) | FQDN-based whitelist filter |
| 1st Author's Name | Keita Hasegawa |
| 1st Author's Affiliation | Osaka Prefecture University(Osaka Pref. Univ.) |
| 2nd Author's Name | Daishi Kondo |
| 2nd Author's Affiliation | Osaka Prefecture University(Osaka Pref. Univ.) |
| 3rd Author's Name | Hideki Tode |
| 3rd Author's Affiliation | Osaka Prefecture University(Osaka Pref. Univ.) |
| Date | 2021-01-22 |
| Paper # | NS2020-116 |
| Volume (vol) | vol.120 |
| Number (no) | NS-327 |
| Page | pp.pp.31-36(NS), |
| #Pages | 6 |
| Date of Issue | 2021-01-14 (NS) |