IDEAS home Printed from https://ideas.repec.org/a/spr/telsys/v81y2022i3d10.1007_s11235-022-00950-x.html
   My bibliography  Save this article

Hotlist and stale content update mitigation in local databases for DNS flooding attacks

Author

Listed:
  • Tasnuva Mahjabin

    (The University of Alabama)

  • Yang Xiao

    (The University of Alabama)

  • Tieshan Li

    (University of Electronic Science and Technology of China
    Dalian Maritime University)

  • Mohsen Guizani

    (Mohamed bin Zayed University of Artificial Intelligence (MBZUAI))

Abstract

Domain name system (DNS) works like a phone book in the Internet address resolution process. It translates user-provided domain names into corresponding IP addresses and thus helps to connect to those domains. For its important role in Internet connectivity and the emerging growth of the Internet of Things (IoT) devices, recent massive distributed denial of service (DDoS) flooding attacks target this important infrastructure. The significance behind this kind of attack is huge. A successful DDoS flooding attack in DNS makes hundreds of domain names unreachable. This paper proposes a mitigation mechanism for this DNS flooding attack in which stale content updates and a hotlist in DNS local databases are utilized in local/low-tier DNS servers. This hotlist contains domain records from different upper-level DNS servers, and these domain names are the top most queried domain names of those servers so that when the DNS is under attack, those domains in the hotlist still can be accessed. This hotlist is implemented using piggyback response messages not to cost much overhead. Furthermore, we propose a stale content update method for DNS local database, which periodically updates the stale contents to keep the database fresh. Simulation runs show good results from this hotlist content, and during an extreme outage for the DNS flooding attack, hotlist contents serve over $$80\%$$ 80 % of the total responses of the database.

Suggested Citation

  • Tasnuva Mahjabin & Yang Xiao & Tieshan Li & Mohsen Guizani, 2022. "Hotlist and stale content update mitigation in local databases for DNS flooding attacks," Telecommunication Systems: Modelling, Analysis, Design and Management, Springer, vol. 81(3), pages 417-430, November.
    • Handle: RePEc:spr:telsys:v:81:y:2022:i:3:d:10.1007_s11235-022-00950-x
    DOI: 10.1007/s11235-022-00950-x
    as

    Download full text from publisher

    File URL: http://link.springer.com/10.1007/s11235-022-00950-x
    File Function: Abstract
    Download Restriction: Access to the full text of the articles in this series is restricted.
    File URL: https://libkey.io/10.1007/s11235-022-00950-x?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    As the access to this document is restricted, you may want to search for a different version of it.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:spr:telsys:v:81:y:2022:i:3:d:10.1007_s11235-022-00950-x. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Sonal Shukla or Springer Nature Abstracting and Indexing (email available below). General contact details of provider: http://www.springer.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.