首页> 外文会议>Annual IEEE/IFIP International Conference on Dependable Systems and Networks >Measuring IPv6 DNS Reconnaissance Attacks and Preventing Them Using DNS Guard

【24h】

Measuring IPv6 DNS Reconnaissance Attacks and Preventing Them Using DNS Guard

机译：测量IPv6 DNS侦察攻击并使用DNS Guard防止它们

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Traditional address scanning attacks mainly rely on the naive 'brute forcing' approach, where the entire IPv4 address space is exhaustively searched by enumerating different possibilities. However, such an approach is inefficient for IPv6 due to its vast subnet size (i.e., 2^{64). As a result, it is widely assumed that address scanning attacks are less feasible in IPv6 networks. In this paper, we evaluate new IPv6 reconnaissance techniques in real IPv6 networks and expose how to leverage the Domain Name System (DNS) for IPv6 network reconnaissance. We collected IPv6 addresses from 5 regions and 100,000 domains by exploiting DNS reverse zone and DNSSEC records. We propose a DNS Guard (DNSG) to efficiently detect DNS reconnaissance attacks in IPv6 networks. DNSG is a plug and play component that could be added to the existing infrastructure. We implement DNSG using Bro and Suricata. Our results demonstrate that DNSG could effectively block DNS reconnaissance attacks.}

机译：传统地址扫描攻击主要依赖于天真的“暴力强制”方法，其中通过枚举不同的可能性来令人遗憾地搜索整个IPv4地址空间。然而，由于其巨大的子网大小（即2，因此，这种方法对IPv6效率低。（即2 64 ）。结果，广泛假设地址扫描攻击在IPv6网络中不太可行。在本文中，我们评估了真实IPv6网络中的新型IPv6侦察技术，并公开了如何利用IPv6网络侦察的域名系统（DNS）。通过利用DNS反向区域和DNSSEC记录，从5个区域和100,000个域收集IPv6地址。我们提出了一个DNS Guard（DNSG），以有效地检测IPv6网络中的DNS侦察攻击。 DNSG是一个可添加到现有基础架构的即插即用组件。我们使用兄弟和suricata来实现DNSG。我们的结果表明，DNSG可以有效地阻止DNS侦察攻击。

著录项

来源
《Annual IEEE/IFIP International Conference on Dependable Systems and Networks》|2018年|706p|共12页
会议地点
作者
Qinwen Hu; Muhammad Rizwan Asghar; Nevil Brownlee;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP393.08;
关键词
Servers; Reconnaissance; Internet; Protocols; Computer crime; IP networks;

机译：服务器;侦察;互联网;协议;计算机犯罪;IP网络;

相似文献

外文文献
中文文献
专利

1. Acute kidney injury: Kidney attack must be prevented [J] . RoncoC., ChawlaL.S. Nature reviews. Nephrology . 2013,第4期

机译：急性肾损伤：必须预防肾脏发作
2. Measuring the Impact of a Successful DDoS Attack on the Customer Behaviour of Managed DNS Service Providers [J] . Abhishta Abhishta, Roland van Rijswijk-Deij, Lambert J.M. Nieuwenhuis Computer communication review . 2018,第5期

机译：衡量成功的DDoS攻击对托管DNS服务提供商的客户行为的影响
3. MinDoS: A Priority-Based SDN Safe-Guard Architecture for DoS Attacks [J] . Tao WANG, Hongchang CHEN, Chao QI IEICE transactions on information and systems . 2018,第10期

机译：MinDoS：用于DoS攻击的基于优先级的SDN安全体系结构
4. Measuring IPv6 DNS Reconnaissance Attacks and Preventing Them Using DNS Guard [C] . Qinwen Hu, Muhammad Rizwan Asghar, Nevil Brownlee Annual IEEE/IFIP International Conference on Dependable Systems and Networks . 2018

机译：衡量IPv6 DNS侦查攻击并使用DNS Guard防止攻击
5. Formal Analysis of DNS Attacks and Their Countermeasures Using Probabilistic Model Checking. [D] . Deshpande, Tushar Suhas. 2013

机译：使用概率模型检查对DNS攻击进行形式化分析及其对策。
6. Progression of Kidney Disease in Moderately Hypercholesterolemic Hypertensive Patients Randomized to Pravastatin Versus Usual Care: A Report From the Antihypertensive and Lipid-Lowering Treatment to Prevent Heart Attack Trial (ALLHAT) [O] . Mahboob Rahman, Charles Baimbridge, Barry R. Davis, -1

机译：随机分配给普伐他汀和常规护理的中度高胆固醇血症高血压患者的肾脏疾病进展：一项抗高血压降脂治疗预防心脏病发作的报告（ALLHAT）
7. Spoof Detection for Preventing DoS Attacks against DNS Servers [O] . Fanglu Guo, Jiawu Chen, Tzi-cker Chiueh 2008

机译：欺骗检测，用于防止针对DNS服务器的DoS攻击

获取原文

客服邮箱：kefu@zhangqiaokeyan.com

京公网安备：11010802029741号 ICP备案号：京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

客服微信
服务号