| 講演名 | 2015/2/26 Detection of Open Resolver Activity in DNS Query Traffic from Campus Network System , |
|---|---|
| PDFダウンロードページ | PDFダウンロードページへ |
| 抄録(和) | |
| 抄録(英) | We statistically investigated the total A-resource record (RR) based DNS query request packet traffic from the campus network to the top domain DNS server in a university during January 1st to December 31st, 2014. The obtained results are: (1) we found significant query keyword based entropy changes in the total DNS query request traffic at February 5th, 2014. (2) In the total A-RR based DNS query request packet traffic, we observed 73-90% of unique query keywords including eleven source IP addresses (i.e. Kaminsky and/or Kaminsky-like attack). (3) Also, we found that the source IP addresses were assigned to the home/broadband routers in campus laboratories, as open DNS resolvers. (4) Also, we calculated frequency distribution of the Levenshtein distance between the DNS query keywords and the peaks that were observed at 10-15 per day. Therefore, we can conclude that the Levenshtein distance model is useful for developing a detection model of open DNS resolvers. |
| キーワード(和) | |
| キーワード(英) | |
| 資料番号 | Vol.2015-IOT-28 No.4 |
| 発行日 |
| 研究会情報 | |
| 研究会 | IA |
|---|---|
| 開催期間 | 2015/2/26(から1日開催) |
| 開催地(和) | |
| 開催地(英) | |
| テーマ(和) | |
| テーマ(英) | |
| 委員長氏名(和) | |
| 委員長氏名(英) | |
| 副委員長氏名(和) | |
| 副委員長氏名(英) | |
| 幹事氏名(和) | |
| 幹事氏名(英) | |
| 幹事補佐氏名(和) | |
| 幹事補佐氏名(英) | |
| 講演論文情報詳細 | |
| 申込み研究会 | Internet Architecture(IA) |
|---|---|
| 本文の言語 | ENG |
| タイトル(和) | |
| サブタイトル(和) | |
| タイトル(英) | Detection of Open Resolver Activity in DNS Query Traffic from Campus Network System |
| サブタイトル(和) | |
| キーワード(1)(和/英) | |
| 第 1 著者 氏名(和/英) | / YASUO MUSASHI |
| 第 1 著者 所属(和/英) | Center for Multimedia and Information Technologies, Kumamoto University |
| 発表年月日 | 2015/2/26 |
| 資料番号 | Vol.2015-IOT-28 No.4 |
| 巻番号(vol) | vol.114 |
| 号番号(no) | 495 |
| ページ範囲 | pp.- |
| ページ数 | 5 |
| 発行日 | |