论文信息 - Defense against DNS Man-In-The-Middle Spoofing

Defense against DNS Man-In-The-Middle Spoofing

The Domain Name Server (DNS) is a key part of the Internet infrastructure. But DNS protocol is so simple that DNS interaction is quite vulnerable to a kind of man-in-the-middle spoofing attack. This paper introduces one type of defense technique based on the main features of DNS response packets. The technique employs Artificial Neural Networks (ANN), which produces excellent performance.

Liang Hu | Kuo Zhao | Xiaolong Bai | Feiyan Chen | Zixing Song

[1] M. Janbeglou,et al. Redirecting network traffic toward a fake DNS server on a LAN , 2010, 2010 3rd International Conference on Computer Science and Information Technology.

[2] Franco Callegati,et al. Man-in-the-Middle Attack to the HTTPS Protocol , 2009, IEEE Security & Privacy Magazine.

[3] Paul V. Mockapetris,et al. Domain names: Concepts and facilities , 1983, RFC.

[4] Paul V. Mockapetris,et al. Development of the domain name system , 1988, SIGCOMM '88.

[5] Shefalika Ghosh Samaddar,et al. Different flavours of Man-In-The-Middle attack, consequences and feasible solutions , 2010 .

[6] William Stallings,et al. Data and Computer Communications , 1985 .

[7] Paul V. Mockapetris,et al. Domain names - implementation and specification , 1987, RFC.

[8] Wang Yao. Detection and Defence of DNS Spoofing Attack , 2006 .