WEKO3
アイテム
T/TCP for DNS: A Performance and Security Analysis
https://ipsj.ixsq.nii.ac.jp/records/11158
https://ipsj.ixsq.nii.ac.jp/records/11158d9b58699-4744-430b-a937-6fdc2a400486
| 名前 / ファイル | ライセンス | アクション |
|---|---|---|
IPSJ-JNL4408024.pdf (464.1 kB)
|
Copyright (c) 2003 by the Information Processing Society of Japan
|
|
| オープンアクセス | ||
| Item type | Journal(1) | |||||||
|---|---|---|---|---|---|---|---|---|
| 公開日 | 2003-08-15 | |||||||
| タイトル | ||||||||
| タイトル | T/TCP for DNS: A Performance and Security Analysis | |||||||
| タイトル | ||||||||
| 言語 | en | |||||||
| タイトル | T/TCP for DNS: A Performance and Security Analysis | |||||||
| 言語 | ||||||||
| 言語 | eng | |||||||
| キーワード | ||||||||
| 主題Scheme | Other | |||||||
| 主題 | 特集:新たな脅威に立ち向かうコンピュータセキュリティ技術 | |||||||
| 資源タイプ | ||||||||
| 資源タイプ識別子 | http://purl.org/coar/resource_type/c_6501 | |||||||
| 資源タイプ | journal article | |||||||
| その他タイトル | ||||||||
| その他のタイトル | ネットワークセキュリティ | |||||||
| 著者所属 | ||||||||
| KDDI R&D Laboratories Inc. | ||||||||
| 著者所属 | ||||||||
| KDDI R&D Laboratories Inc. | ||||||||
| 著者所属 | ||||||||
| Cybermedia Center Osaka University | ||||||||
| 著者所属 | ||||||||
| Cybermedia Center Osaka University | ||||||||
| 著者所属(英) | ||||||||
| en | ||||||||
| Graduate School of Information Science and Technology, Osaka University/KDDI R&D Laboratories, Inc. | ||||||||
| 著者所属(英) | ||||||||
| en | ||||||||
| KDDI R&D Laboratories, Inc. | ||||||||
| 著者所属(英) | ||||||||
| en | ||||||||
| Cybermedia Center, Osaka University | ||||||||
| 著者所属(英) | ||||||||
| en | ||||||||
| Cybermedia Center, Osaka University | ||||||||
| 著者名 |
Kenji, Rikitake
× Kenji, Rikitake
|
|||||||
| 著者名(英) |
Kenji, Rikitake
× Kenji, Rikitake
|
|||||||
| 論文抄録 | ||||||||
| 内容記述タイプ | Other | |||||||
| 内容記述 | DNS (Domain Name System) is a mandatory subsystem of the Internet.DNS however has many vulnerabilities due to the complex structure.Major security incidents such as a DDoS (Distributed Denial-of-Service) attack to the Root Servers have been continuously and repeatedly hampering the Internet operation.While many research proposals have been made to secure the DNS by using cryptographic methods to protect the protocol data exchange the attacks to the DNS transport layer remain effective and the lack of transport reliability of DNS still hampers the overall security of DNS.In this paper we first discuss the DNS overall security issues focusing on the communication reliability such as the usage of Internet transport layer protocols.We then propose introducing T/TCP (Transactional TCP) a TCP enhancement to the DNS transport layer.We evaluate the T/TCP by implementing the protocol to existing DNS program codes and conclude that T/TCP is an effective alternative to enhance the overall system security byincreasing the reliability of the query processing and giving another choice of configuring firewalls. | |||||||
| 論文抄録(英) | ||||||||
| 内容記述タイプ | Other | |||||||
| 内容記述 | DNS (Domain Name System) is a mandatory subsystem of the Internet.DNS, however, has many vulnerabilities due to the complex structure.Major security incidents,such as a DDoS (Distributed Denial-of-Service) attack to the Root Servers,have been continuously and repeatedly hampering the Internet operation.While many research proposals have been made to secure the DNS by using cryptographic methods to protect the protocol data exchange,the attacks to the DNS transport layer remain effective,and the lack of transport reliability of DNS still hampers the overall security of DNS.In this paper, we first discuss the DNS overall security issues,focusing on the communication reliability such as the usage of Internet transport layer protocols.We then propose introducing T/TCP (Transactional TCP),a TCP enhancement, to the DNS transport layer.We evaluate the T/TCP by implementing the protocol to existing DNS program codes,and conclude that T/TCP is an effective alternative to enhance the overall system security byincreasing the reliability of the query processing and giving another choice of configuring firewalls. | |||||||
| 書誌レコードID | ||||||||
| 収録物識別子タイプ | NCID | |||||||
| 収録物識別子 | AN00116647 | |||||||
| 書誌情報 |
情報処理学会論文誌 巻 44, 号 8, p. 2060-2071, 発行日 2003-08-15 |
|||||||
| ISSN | ||||||||
| 収録物識別子タイプ | ISSN | |||||||
| 収録物識別子 | 1882-7764 | |||||||
