Title :
DNS configuration detection model
Author :
Keyu Lu ; Kaikun Dong ; Cuihua Wang ; Haiyan Xu
Author_Institution :
Sch. of Comput. Sci. & Technol., Harbin Inst. of Technol., Harbin, China
Abstract :
The domain name system (DNS) plays a crucial role in the Internet. However, DNS configuration errors seriously affect the performance of DNS recently. In order to know current DNS configuration, we have studied and classified common configuration problems, proposed a DNS configuration detection model and detected the top 500 zones of China. The detection results show that DNS configuration errors are widespread. Percentages of misconfigured NS records in the top 500 zones, SOA records and MX records are all over 25%. And more than 25% of the zones do not allow TCP connection. Moreover, percentages of each configuration error class of the zones, such as delegation inconsistency, lame inconsistency and diminished server redundancy are all over 5%, especially delegation inconsistency, which accounts for 28%. Therefore, the DNS configuration is expected to improve to avoid DNS attack.
Keywords :
Internet; redundancy; security of data; transport protocols; DNS attack; DNS configuration detection model; DNS configuration error; Internet; MX records; SOA records; TCP connection; configuration problem; delegation inconsistency; diminished server redundancy; domain name system; lame inconsistency; Electronic mail; IP networks; Internet; Redundancy; Semiconductor optical amplifiers; Servers; Standardization; Domain Name System; configuration errors; detection;
Conference_Titel :
Systems and Informatics (ICSAI), 2014 2nd International Conference on
Conference_Location :
Shanghai
Print_ISBN :
978-1-4799-5457-5
DOI :
10.1109/ICSAI.2014.7009359
