Pattern Discovery in DNS Query Traffic
نویسندگان
چکیده
منابع مشابه
Analyzing Root DNS Traffic
DNS servers often fail or have bad implementations of algorithms that decrease the efficiency of the DNS system. We introduce a method for clustering misconfigured DNS sources. Using machine learning methods, we analyzed 24 hours of DNS requests that were collected on the A-root DNS server. The 50 gigabyte data set was a log containing 10-40 million requests per hour. We selected the hour of 1:...
متن کاملIdentifying Patterns in DNS Traffic
In this research, a visual analytics approach is used on a large set of DNS packet captures to gain insight into ways that authoritative name servers are abused for denial of service attacks. Several tools were developed to identify patterns in DNS queries and responses. These patterns revealed that source port selection by recursive name servers is not uniformly distributed and that attackers ...
متن کاملSecurity Monitoring of DNS traffic
The Domain Name System (DNS) is a critical part of the Internet. This paper analyzes methods for passive DNS replication and describes the replication setup at the University of Auckland. Analysis of the replicated DNS traffic showed great dependency of collaborative anti-spam tools on the DNS. These tools also put a great burden on the DNS. This paper discusses analyzed anomalies in the replic...
متن کاملSecure and Efficient Traffic Pattern Discovery in MANETs
Anonymous Communication is a critical issue in case of mobile ad-hoc networks (MANETs). It is very tough to learn the source and destination of the communication link and the other intermediate nodes that are involved in the communication. Many techniques are proposed to improve the anonymous communication in case of MANETs. However, MANETs are vulnerable under certain situations like passive a...
متن کاملAnomaly detection of domain name system (DNS) query traffic at top level domain servers
Major network events can be reflected on domain name system (DNS) traffic at the top level server on the DNS hierarchical structure. This paper pursues a novel approach to detect the DNS traffic anomaly of 5.19 events in China at CN top level domain server using covariance analysis. We normalize, expand and average the covariance changes for different length of time slice to enhance the robustn...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Procedia Computer Science
سال: 2013
ISSN: 1877-0509
DOI: 10.1016/j.procs.2013.05.012