The search functionality is under construction.
The search functionality is under construction.

Evaluating “Health Status” for DNS Resolvers

Keyu LU, Zhaoxin ZHANG

  • Full Text Views

    0

  • Cite this

Summary :

The Domain Name System (DNS) maps domain names to IP addresses. It is an important infrastructure in the Internet. Recently, DNS has experienced various security threats. DNS resolvers experience the security threats most frequently, since they interact with clients and they are the largest group of domain name servers. In order to eliminate security threats against DNS resolvers, it is essential to improve their “health status”. Since DNS resolvers' owners are not clear which DNS resolvers should be improved and how to improve “health status”, the evaluation of “health status” for DNS resolvers has become vital. In this paper, we emphasize five indicators describing “health status” for DNS resolvers, including security, integrity, availability, speed and stability. We also present nine metrics measuring the indicators. Based on the measurement of the metrics, we present a “health status” evaluation method with factor analysis. To validate our method, we measured and evaluated more than 30,000 DNS resolvers in China and Japan. The results showed that the proposed “health status” evaluation method could describe “health status” well. We also introduce instructions for evaluating a small number of DNS resolvers. And we discuss DNSSEC and its effects on resolution speed. At last, we make suggestions for inspecting and improving “health status” of DNS resolvers.

Publication
IEICE TRANSACTIONS on Communications Vol.E101-B No.12 pp.2409-2424
Publication Date
2018/12/01
Publicized
2018/06/22
Online ISSN
1745-1345
DOI
10.1587/transcom.2018EBP3023
Type of Manuscript
PAPER
Category
Internet

Authors

Keyu LU
  Harbin Institute of Technology
Zhaoxin ZHANG
  Harbin Institute of Technology

Keyword