DNS configuration detection model

Author

Keyu Lu ; Kaikun Dong ; Cuihua Wang ; Haiyan Xu

Author_Institution

Sch. of Comput. Sci. & Technol., Harbin Inst. of Technol., Harbin, China

fYear

2014

fDate

15-17 Nov. 2014

Firstpage

613

Lastpage

618

Abstract

The domain name system (DNS) plays a crucial role in the Internet. However, DNS configuration errors seriously affect the performance of DNS recently. In order to know current DNS configuration, we have studied and classified common configuration problems, proposed a DNS configuration detection model and detected the top 500 zones of China. The detection results show that DNS configuration errors are widespread. Percentages of misconfigured NS records in the top 500 zones, SOA records and MX records are all over 25%. And more than 25% of the zones do not allow TCP connection. Moreover, percentages of each configuration error class of the zones, such as delegation inconsistency, lame inconsistency and diminished server redundancy are all over 5%, especially delegation inconsistency, which accounts for 28%. Therefore, the DNS configuration is expected to improve to avoid DNS attack.

Keywords

Internet; redundancy; security of data; transport protocols; DNS attack; DNS configuration detection model; DNS configuration error; Internet; MX records; SOA records; TCP connection; configuration problem; delegation inconsistency; diminished server redundancy; domain name system; lame inconsistency; Electronic mail; IP networks; Internet; Redundancy; Semiconductor optical amplifiers; Servers; Standardization; Domain Name System; configuration errors; detection;

fLanguage

English

Publisher

ieee

Conference_Titel

Systems and Informatics (ICSAI), 2014 2nd International Conference on

Conference_Location

Shanghai

Print_ISBN

978-1-4799-5457-5

Type

conf

DOI

10.1109/ICSAI.2014.7009359

Filename

7009359