Survey on key technologies for protective DNS service
Uloženo v:
| Název: | Survey on key technologies for protective DNS service |
|---|---|
| Autoři: | MA Yongzheng, LI Hongtao, MA Zhongsheng, HU Weihong, ZHANG Zhongxian |
| Zdroj: | 网络与信息安全学报, Vol 10, Pp 39-55 (2024) |
| Informace o vydavateli: | POSTS&TELECOM PRESS Co., LTD, 2024. |
| Rok vydání: | 2024 |
| Sbírka: | LCC:Electronic computers. Computer science |
| Témata: | domain name system (DNS), protective DNS (PDNS) service, DNS threat mitigation, DNS anomaly detection, threat intelligence management, data storage management, Electronic computers. Computer science, QA75.5-76.95 |
| Popis: | The domain name system (DNS) is a naming service for Internet resources that provides the function of converting from domain names to IP addresses. It serves as the entry point for users to access Internet applications and is also the key point for client-side security threat perception and mitigation. Common DNS abuses and related security threats on the client side include phishing, malware, and other attacks based on DNS. The protective DNS (PDNS) service leverages the existing DNS protocol and architecture to detect and mitigate threats by analyzing DNS queries, thereby protecting users against potential security threads at the source. Currently, a systematic introduction and research on PDNS service in academia and industry is lacking. The existing work, application status, and architecture and functions of PDNS were systematically sorted out. The key technologies associated with PDNS, including DNS-related threat mitigation, DNS anomaly detection, threat intelligence management, and data storage and management technology, were reviewed. The issues and challenges faced by PDNS were analyzed, and future development trends and research directions for PDNS were proposed. |
| Druh dokumentu: | article |
| Popis souboru: | electronic resource |
| Jazyk: | English Chinese |
| ISSN: | 2096-109X |
| Relation: | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2024065; https://doaj.org/toc/2096-109X |
| DOI: | 10.11959/j.issn.2096-109x.2024065 |
| Přístupová URL adresa: | https://doaj.org/article/1c99a8fd23cf4f2c86eb5fc777b30fba |
| Přístupové číslo: | edsdoj.1c99a8fd23cf4f2c86eb5fc777b30fba |
| Databáze: | Directory of Open Access Journals |
Nájsť tento článok vo Web of Science | Abstrakt: | The domain name system (DNS) is a naming service for Internet resources that provides the function of converting from domain names to IP addresses. It serves as the entry point for users to access Internet applications and is also the key point for client-side security threat perception and mitigation. Common DNS abuses and related security threats on the client side include phishing, malware, and other attacks based on DNS. The protective DNS (PDNS) service leverages the existing DNS protocol and architecture to detect and mitigate threats by analyzing DNS queries, thereby protecting users against potential security threads at the source. Currently, a systematic introduction and research on PDNS service in academia and industry is lacking. The existing work, application status, and architecture and functions of PDNS were systematically sorted out. The key technologies associated with PDNS, including DNS-related threat mitigation, DNS anomaly detection, threat intelligence management, and data storage and management technology, were reviewed. The issues and challenges faced by PDNS were analyzed, and future development trends and research directions for PDNS were proposed. |
|---|---|
| ISSN: | 2096109X |
| DOI: | 10.11959/j.issn.2096-109x.2024065 |