论文信息 - Comments on DNS Robustness

Comments on DNS Robustness

The Domain Name System (DNS) is used to map human-friendly hostnames into network addresses that are in turn used to route traffic across the Internet. DNS lookups are a precursor to much of the communication that traverses the Internet. Therefore, the DNS is a crucial service. In this talk, we will explore the robustness of the DNS ecosystem. We will use the .com, .net and .org zone files from the past nine years to study two basic kinds of robustness. First, we will look at the robustness of individual zones (e.g., how many nameservers does the zone leverage). Second, we will explore how connected DNS zones are to one another. E.g., how many zones end up sharing fate by using the same set of nameservers? In both cases we find soft spots in the DNS ecosystem where robustness can be improved---and, often, at little cost.

Mark Allman | M. Allman

[1] Emin Gün Sirer,et al. Perils of transitive trust in the domain name system , 2005, IMC '05.

[2] Mark Allman,et al. Assessing DNS Vulnerability to Record Injection , 2014, PAM.

[3] Amir Herzberg,et al. Fragmentation Considered Poisonous, or: One-domain-to-rule-them-all.org , 2013, 2013 IEEE Conference on Communications and Network Security (CNS).

[4] Randy Bush,et al. Selection and Operation of Secondary DNS Servers , 1997, RFC.

[5] Prasant Mohapatra,et al. Quality of name resolution in the Domain Name System , 2009, 2009 17th IEEE International Conference on Network Protocols.

[6] Narseo Vallina-Rodriguez,et al. A Long Way to the Top: Significance, Structure, and Stability of Internet Top Lists , 2018, Internet Measurement Conference.

[7] Paul V. Mockapetris,et al. Domain names - concepts and facilities , 1987, RFC.

[8] Georg Carle,et al. Structure and Stability of Internet Top Lists , 2018, ArXiv.

[9] Craig A. Shue,et al. The web is smaller than it seems , 2007, IMC '07.

[10] Ted Hardie,et al. Distributing Authoritative Name Servers via Shared Unicast Addresses , 2002, RFC.

[11] Amir Herzberg,et al. Fragmentation Considered Poisonous , 2012, ArXiv.