Defending Internet of Things Against Malicious Domain Names using D-FENS

Spaulding, Jeffrey; Mohaisen, Aziz

doi:10.1109/sec.2018.00051

Cited by 13 publications

(3 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The attacker has gotten around the firewall and communicates directly with network devices via the victim's browser [43]. IoT devices provide a vast landscape for rebinding DNS attacks by getting access to the individual networks because of the security mechanisms used [44]. Using social engineering to lure the prey via the website through the small ads for visiting it [45].…”

Section: ) Zero-day Vulnerabilitymentioning

confidence: 99%

A Comprehensive Review of DNS-based Distributed Reflection Denial of Service (DRDoS) Attacks: State-of-the-Art

Nuiaa¹,

Manickam²,

ALsaeedi³

2022

Int. J. Adv. Sci. Eng. Inf. Technol.

View full text Add to dashboard Cite

Cyberattacks significantly impact the services based on the internet that is used in our daily lives. Any disruption will make it extremely difficult for us to carry out our daily activities. Cyberattacks will disrupt online services, exploit vulnerabilities to breach databases and servers, and so on. Various systems and services contribute to the Internet's seamless functionality. The Domain Name System (DNS) is one of the most important services. DNS is used to resolve domain names into machine-readable IP addresses. DNS, like many other Internet services, is vulnerable to cyber-attacks. While DNS faces a slew of threats, one in particular appears to stand out. DNS is vulnerable to a variety of distributed denial-of-service attacks. The distributed reflection denial of service (DRDoS) attack, a flooding attack against DNS servers that renders them unavailable, disrupting domain name resolution activities, is one of the most common variants. DRDoS attacks have been on the rise in recent years. DNS lookup outages would significantly impact our online activities in the world of ultra-connectivity because they are typically the first step in establishing a connection with a server. The purpose of this paper is to present a state-of-the-art review of DRDoS attack detection and mitigation algorithms as well as the datasets on which these algorithms operate. Finally, we discussed each of these algorithms' relative merits and demerits.

show abstract

Section: ) Zero-day Vulnerabilitymentioning

confidence: 99%

A Comprehensive Review of DNS-based Distributed Reflection Denial of Service (DRDoS) Attacks: State-of-the-Art

Nuiaa¹,

Manickam²,

ALsaeedi³

2022

Int. J. Adv. Sci. Eng. Inf. Technol.

View full text Add to dashboard Cite

show abstract

“…In Spaulding and Mohaisen [42], the DNS filtering system and system for network extraction (FENS) was developed and used CNN and LSTM for real-time classification together with blacklists. This system allows the prediction of malicious domain names that have never before been reported.…”

Section: Domain Generating Algorithmmentioning

confidence: 99%

Untitled

2021

JUSPN

View full text Add to dashboard Cite

Reinforcement learning and recurrent networks are two emerging machine-learning paradigms. The first learns the best actions an agent needs to perform to maximize its rewards in a particular environment and the second has the specificity to use an internal state to remember previous analysis results and consider them for the current one. Research into RL and recurrent network has been proven to have made a real contribution to the protection of ubiquitous systems and pervasive networks against intrusions and malwares. In this paper, a systematic review of this research was performed in regard to various attacks and an analysis of the trends and future fields of interest for the RL and recurrent network-based research in network security was complete.

show abstract

“…En (Spaulding & Mohaisen, 2018), se propone una solución que combate tanto a Phishing como a ataques de DNS tal como DDoS. Así, se propone un sistema llamado D-FENS el cual identifica nombres de dominio maliciosos en tiempo real.…”

Section: B úLtimas Técnicas De Detección De Ataques De Phishingunclassified

Un experimento para crear conciencia en las personas acerca de los ataques de Ingeniería Social

Benavides

Fuertes

Sánchez-Gordón

2020

View full text Add to dashboard Cite

La Ingeniería Social es la técnica que permite obtener información confidencial de los usuarios, de manera fraudulenta, con la finalidad de usarla en contra de ellos mismos, o de las organizaciones en las que laboran. Este estudio presenta un experimento enfocado a crear conciencia acerca de las consecuencias de este tipo de ataque, mediante la ejecución de un ataque controlado a personas de confianza. Para lograrlo, se han llevado a cabo un conjunto de engaños y actividades, que los atacantes usan comúnmente para obtener información sensible, incentivando la curiosidad de los contactos de las redes sociales para que visiten un blog personal con información ficticia. A más de esta interacción humana, se ha instalado un complemento oculto y no deseado, para recolectar información del usuario tales como: su dirección IP, país de origen, sistema operativo y tipo de navegador. Con la información recolectada, se realizó un ataque de escaneo a los puertos 80 (Web server) y 22 (SSH Server), para encontrar más información sensible. Posteriormente, se muestran los resultados a las víctimas. Además, luego del ataque se realizó una encuesta a los usuarios acerca de su conocimiento de Phishing y de Ingeniería Social. Los resultados muestran que únicamente el 2% de las personas, sospecharon o preguntaron acerca del verdadero motivo para visitar el Blog. Más aún, demuestra que las personas que visitaron el blog, no tienen conocimiento y conciencia de cómo se puede vulnerar información sensible de una forma relativamente sencilla.

show abstract

Defending Internet of Things Against Malicious Domain Names using D-FENS

Cited by 13 publications

References 12 publications

A Comprehensive Review of DNS-based Distributed Reflection Denial of Service (DRDoS) Attacks: State-of-the-Art

A Comprehensive Review of DNS-based Distributed Reflection Denial of Service (DRDoS) Attacks: State-of-the-Art

Untitled

Un experimento para crear conciencia en las personas acerca de los ataques de Ingeniería Social

Contact Info

Product

Resources

About