DNS Flood Attack Mitigation Utilizing Hot-Lists and Stale Content Updates

Domain Name System (DNS) has become a target of the Distributed Denial of Service (DDoS) attacks. When a DNS is under a DDoS flood attack, all the domain information under that DNS becomes unreachable, eventually causing unavailability of those particular domain names. In this paper, we propose a method which includes periodic stale content update and maintains a list of most frequently queried domain names of different DNS servers. Our simulation results show that the our method can serve more than \(70\%\) of the total cache responses during a massive DNS Flood attack.

[1]  Yang Xiao,et al.  Cache access and replacement for future wireless Internet , 2006, IEEE Communications Magazine.

[2]  Paul Francis,et al.  Mitigating DNS DoS attacks , 2008, CCS.

[3]  Lei Zhen-ming,et al.  Alleviating the Impact of DNS DDoS Attacks , 2010, 2010 Second International Conference on Networks Security, Wireless Communications and Trusted Computing.

[4]  Kilnam Chon,et al.  DNS resolution with renewal using piggyback , 2009, Journal of Communications and Networks.

[5]  Sandy Irani,et al.  Cost-Aware WWW Proxy Caching Algorithms , 1997, USENIX Symposium on Internet Technologies and Systems.

[6]  Yang Xiao,et al.  Mitigation Process for DNS Flood Attacks , 2019, 2019 16th IEEE Annual Consumer Communications & Networking Conference (CCNC).

[7]  Natalija Vlajic,et al.  The Role of DNS TTL Values in Potential DDoS Attacks: What Do the Major Banks Know About It? , 2012, ANT/MobiWIS.

[8]  Yang Xiao,et al.  A survey of distributed denial-of-service attack, prevention, and mitigation techniques , 2017, Int. J. Distributed Sens. Networks.

[9]  Yang Xiao,et al.  Optimal callback with two-level adaptation for wireless data access , 2006, IEEE Transactions on Mobile Computing.

[10]  Robert Tappan Morris,et al.  DNS performance and the effectiveness of caching , 2002, TNET.

[11]  Craig E. Wills,et al.  Piggybacking related domain names to improve DNS performance , 2006, Comput. Networks.

[12]  Edith Cohen,et al.  Proactive caching of DNS records: addressing a performance bottleneck , 2003, Comput. Networks.