Presentation | 2005-07-21 A Simulation-based UDP Traffic Analysis of DNSSEC Kenji RIKITAKE, Koji NAKAO, Shinji SHIMOJO, Hiroki NOGAWA, |
---|---|
PDF Download Page | PDF download Page Link |
Abstract(in Japanese) | (See Japanese page) |
Abstract(in English) | DNSSEC, an authentication method of DNS(Domain Name System), increases the payload length of DNS answer datagrams by adding digital signatures. The payload-length increase causes fragmentation and larger loss rate of the IP datagrams which carry the DNS UDP payloads, and reduces the reliability of DNS resolver-server transactions. In this paper, we propose a model of the length distributions of DNS UDP payloads estimated from real-world traffic samples and recalculation of the payload length values after adding DNSSEC signatures. We then propose the network traffic simulation procedure to estimate the rates of loss and fragmentation of IP datagrams between DNS resolvers and servers. |
Keyword(in Japanese) | (See Japanese page) |
Keyword(in English) | DNS(Domain Name System) / DNSSEC / payload length / transport protocol |
Paper # | ISEC2005-22,SITE2005-20 |
Date of Issue |
Conference Information | |
Committee | SITE |
---|---|
Conference Date | 2005/7/14(1days) |
Place (in Japanese) | (See Japanese page) |
Place (in English) | |
Topics (in Japanese) | (See Japanese page) |
Topics (in English) | |
Chair | |
Vice Chair | |
Secretary | |
Assistant |
Paper Information | |
Registration To | Social Implications of Technology and Information Ethics (SITE) |
---|---|
Language | ENG |
Title (in Japanese) | (See Japanese page) |
Sub Title (in Japanese) | (See Japanese page) |
Title (in English) | A Simulation-based UDP Traffic Analysis of DNSSEC |
Sub Title (in English) | |
Keyword(1) | DNS(Domain Name System) |
Keyword(2) | DNSSEC |
Keyword(3) | payload length |
Keyword(4) | transport protocol |
1st Author's Name | Kenji RIKITAKE |
1st Author's Affiliation | Security Advancement Group, NICT() |
2nd Author's Name | Koji NAKAO |
2nd Author's Affiliation | Security Advancement Group, NICT:Information Security Department, KDDI Corporation |
3rd Author's Name | Shinji SHIMOJO |
3rd Author's Affiliation | Cybermedia Center, Osaka University |
4th Author's Name | Hiroki NOGAWA |
4th Author's Affiliation | Information Center for Medical Sciences, Tokyo Medical and Dental University |
Date | 2005-07-21 |
Paper # | ISEC2005-22,SITE2005-20 |
Volume (vol) | vol.105 |
Number (no) | 192 |
Page | pp.pp.- |
#Pages | 8 |
Date of Issue |