Abstract | ||
---|---|---|
The domain name system (DNS) is a complex distributed database on which several Internet services rely on. As its monitoring is critical, researchers and internet service providers continuously monitor DNS traffic for identifying anomalies, measuring performance, and generating usage statistics. This paper looks at DNS traffic from a different perspective; it covers the design and implementation of a passive DNS monitoring system whose goal is to understand trends, characterize economical relationships, and also track suspicious activities. The system described on this paper manages the it country code Top Level Domain (ccTLD). Deployed on it authoritative name servers, it is currently permanently monitoring all the it DNS traffic. |
Year | DOI | Venue |
---|---|---|
2012 | 10.1145/2245276.2245396 | SAC |
Keywords | Field | DocType |
suspicious activity,passive dns monitoring system,country code top level,economical relationship,domain name system,dns traffic,internet service,authoritative name server,internet service provider,different perspective,distributed database | Computer science,Computer security,DNS hijacking,Domain Name System,Computer network,Round-robin DNS,Name server,Country code top-level domain,nsupdate,The Internet,DNS spoofing | Conference |
Citations | PageRank | References |
4 | 0.50 | 4 |
Authors | ||
4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Luca Deri | 1 | 292 | 32.98 |
Lorenzo Luconi Trombacchi | 2 | 4 | 0.84 |
Maurizio Martinelli | 3 | 20 | 7.36 |
Daniele Vannozzi | 4 | 10 | 2.20 |