A4 Refereed article in a conference publication
On the Design of a Simple Network Resolver for DNS Mining
Authors: Jukka Ruohonen, Ville Leppänen
Editors: Boris Rachev, Angel Smrikarov
Conference name: International Conference on Computer Systems and Technologies
Publishing place: New York
Publication year: 2016
Book title : CompSysTech '16 Proceedings of the 17th International Conference on Computer Systems and Technologies 2016
Series title: ICPS: ACM International Conference Proceeding Series
Volume: 1164
First page : 105
Last page: 112
Number of pages: 8
ISBN: 978-1-4503-4182-0
DOI: https://doi.org/10.1145/2983468.2983513
Web address : http://doi.acm.org/10.1145/2983468.2983513
The domain name system (DNS) offers an ideal distributed database for big data mining related to different cyber security questions. Besides infrastructural problems, scalability issues, and security challenges related to the protocol itself, information from DNS is often required also for more nuanced cyber security questions. Against this backdrop, this paper discusses the fundamental characteristics of DNS in relation to cyber security and different research prototypes designed for passive but continuous DNS-based monitoring of domains and addresses. With this discussion, the paper also illustrates a few general software design aspects.
