Defending against denial of service attacks using secure name resolution

Prashant Dewan; Partha Dasgupta; Vijay Karamcheti

Defending against denial of service attacks using secure name resolution

Prashant Dewan, Partha Dasgupta, Vijay Karamcheti

Computer Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

This paper proposes a technique to foil DoS (Denial of Service) attacks. The proposed technique converts a static service to a relocating service and provides information of the new location only to the specific pre-registered client groups while hiding it from others. The Nameserver, responsible for advertising the address of the service, publishes only the encrypted address for the service. Only pre-registered clients get the key (needed for decryption), after being authenticated by the Key Server, which is entrusted with the distribution of key(s). A DoS attack becomes difficult to execute, as the attacker does not know the precise location to attack. In addition, the proposed technique facilitates quick restoration of services in the event of an attack. We also show that this solution can be implemented with a low run time overheads.

Original language	English (US)
Title of host publication	Proceedings of the International Conference on Security and Management, SAM 2003
Editors	H.R. Arabnia, Y. Mun, H.R. Arabnia, Y. Mun
Pages	675-681
Number of pages	7
State	Published - Dec 1 2003
Event	Proceedings of the International Conference on Security and Management, SAM 2003 - Las vegas, NV, United States Duration: Jun 23 2004 → Jun 26 2004

Publication series

Name	Proceedings of the International Conference on Security and Management
Volume	2

Other

Other	Proceedings of the International Conference on Security and Management, SAM 2003
Country/Territory	United States
City	Las vegas, NV
Period	6/23/04 → 6/26/04

Keywords

DNS
DoS
Networks
Security

ASJC Scopus subject areas

General Engineering

Cite this

Defending against denial of service attacks using secure name resolution. / Dewan, Prashant; Dasgupta, Partha; Karamcheti, Vijay.
Proceedings of the International Conference on Security and Management, SAM 2003. ed. / H.R. Arabnia; Y. Mun; H.R. Arabnia; Y. Mun. 2003. p. 675-681 (Proceedings of the International Conference on Security and Management; Vol. 2).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Dewan, P, Dasgupta, P & Karamcheti, V 2003, Defending against denial of service attacks using secure name resolution. in HR Arabnia, Y Mun, HR Arabnia & Y Mun (eds), Proceedings of the International Conference on Security and Management, SAM 2003. Proceedings of the International Conference on Security and Management, vol. 2, pp. 675-681, Proceedings of the International Conference on Security and Management, SAM 2003, Las vegas, NV, United States, 6/23/04.

@inproceedings{a916b6674e28460e944cf45fb899e24d,

title = "Defending against denial of service attacks using secure name resolution",

abstract = "This paper proposes a technique to foil DoS (Denial of Service) attacks. The proposed technique converts a static service to a relocating service and provides information of the new location only to the specific pre-registered client groups while hiding it from others. The Nameserver, responsible for advertising the address of the service, publishes only the encrypted address for the service. Only pre-registered clients get the key (needed for decryption), after being authenticated by the Key Server, which is entrusted with the distribution of key(s). A DoS attack becomes difficult to execute, as the attacker does not know the precise location to attack. In addition, the proposed technique facilitates quick restoration of services in the event of an attack. We also show that this solution can be implemented with a low run time overheads.",

keywords = "DNS, DoS, Networks, Security",

author = "Prashant Dewan and Partha Dasgupta and Vijay Karamcheti",

year = "2003",

month = dec,

day = "1",

language = "English (US)",

isbn = "1932415165",

series = "Proceedings of the International Conference on Security and Management",

pages = "675--681",

editor = "H.R. Arabnia and Y. Mun and H.R. Arabnia and Y. Mun",

booktitle = "Proceedings of the International Conference on Security and Management, SAM 2003",

note = "Proceedings of the International Conference on Security and Management, SAM 2003 ; Conference date: 23-06-2004 Through 26-06-2004",

}

TY - GEN

T1 - Defending against denial of service attacks using secure name resolution

AU - Dewan, Prashant

AU - Dasgupta, Partha

AU - Karamcheti, Vijay

PY - 2003/12/1

Y1 - 2003/12/1

N2 - This paper proposes a technique to foil DoS (Denial of Service) attacks. The proposed technique converts a static service to a relocating service and provides information of the new location only to the specific pre-registered client groups while hiding it from others. The Nameserver, responsible for advertising the address of the service, publishes only the encrypted address for the service. Only pre-registered clients get the key (needed for decryption), after being authenticated by the Key Server, which is entrusted with the distribution of key(s). A DoS attack becomes difficult to execute, as the attacker does not know the precise location to attack. In addition, the proposed technique facilitates quick restoration of services in the event of an attack. We also show that this solution can be implemented with a low run time overheads.

AB - This paper proposes a technique to foil DoS (Denial of Service) attacks. The proposed technique converts a static service to a relocating service and provides information of the new location only to the specific pre-registered client groups while hiding it from others. The Nameserver, responsible for advertising the address of the service, publishes only the encrypted address for the service. Only pre-registered clients get the key (needed for decryption), after being authenticated by the Key Server, which is entrusted with the distribution of key(s). A DoS attack becomes difficult to execute, as the attacker does not know the precise location to attack. In addition, the proposed technique facilitates quick restoration of services in the event of an attack. We also show that this solution can be implemented with a low run time overheads.

KW - DNS

KW - DoS

KW - Networks

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=1642373352&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=1642373352&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:1642373352

SN - 1932415165

T3 - Proceedings of the International Conference on Security and Management

SP - 675

EP - 681

BT - Proceedings of the International Conference on Security and Management, SAM 2003

A2 - Arabnia, H.R.

A2 - Mun, Y.

A2 - Arabnia, H.R.

A2 - Mun, Y.

T2 - Proceedings of the International Conference on Security and Management, SAM 2003

Y2 - 23 June 2004 through 26 June 2004

ER -

Defending against denial of service attacks using secure name resolution

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Other files and links

Fingerprint

Cite this