ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Digital Library logoTake a look at the new version of this page: [ beta version ]. Tell us what you think.
Understanding implications of DNS zone provisioning
Full text PdfPdf (161 KB)
Source
Internet Measurement Conference archive
Proceedings of the 8th ACM SIGCOMM conference on Internet measurement table of contents
Vouliagmeni, Greece
SESSION: Infrastructure table of contents
Pages: 211-216  
Year of Publication: 2008
ISBN:978-1-60558-334-1
Authors
Andrew J. Kalafut  Indiana University, Bloomington, IN, USA
Craig A. Shue  Indiana University, Bloomington, IN, USA
Minaxi Gupta  Indiana University, Bloomington, IN, USA
Sponsors
SIGCOMM: ACM Special Interest Group on Data Communication
SIGMETRICS: ACM Special Interest Group on Measurement and Evaluation
ACM: Association for Computing Machinery
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 21,   Downloads (12 Months): 354,   Citation Count: 0
Additional Information:

abstract   references   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1452520.1452546
What is a DOI?

ABSTRACT

DNS is a critical component of the Internet. This paper takes a comprehensive look at the provisioning of Internet domains and its impact on the availability of various services. To gather data, we sweep 60% of the Internet's domains for zone transfers. 6.6% of them allow us to transfer their complete information. We find that carelessness in handling DNS records can lead to reduced availability of name servers, email, and Web servers. It also undermines anti-spam efforts and the efforts to shut down phishing sites or to contain malware infections.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
E. Allman, J. Callas, M. Delany, M. Libbey, J. Fenton, and M. Thomas. DomainKeys identified mail (DKIM) signatures. IETF RFC 4871, May 2007.
 
2
R. Ardnds, R. Austein, M. Larson, D. Massey, and S. Rose. Resource records for the DNS security extensions. IETF RFC 4034, Mar. 2005.
 
3
D. Barr, Common DNS Operational and Configuration Errors, RFC Editor, 1996
 
4
M. Delany. Domain-based email authentication using public keys advertised in the DNS (DomainKeys). IETF RFC 4870, May 2007.
 
5
R. Elz , R. Bush, Clarifications to the DNS Specification, RFC Editor, 1997
 
6
R. Elz , R. Bush , S. Bradner , M. Patton, Selection and Operation of Secondary DNS Servers, RFC Editor, 1997
 
7
A. Householder, B. King, and K. Silva. Securing an internet name server. CERT Coordination Center Whitepaper, 2002.
 
8
S. Josefsson. DNSSEC walker. http://josefsson.org/walker/.
 
9
O. Kolkman, M. Fuhr, D. Franks, and C. Reinhardt. NET::DNS perl DNS reslover module. http://www.net-dns.org.
 
10
J. Lyon and M. Wong. Sender id: Authenticating e-mail. IETF RFC 4406, April 2006.
 
11
P. V. Mockapetris, Domain names - concepts and facilities, RFC Editor, 1987
 
12
P. V. Mockapetris, Domain names: Implementation specification, RFC Editor, 1983
 
13
E. Osterweil, M. Ryan, and D. Massey. SecSpider. http://secspider.cs.ucla.edu.
14
Vasileios Pappas , Patrik Fältström , Daniel Massey , Lixia Zhang, Distributed DNS troubleshooting, Proceedings of the ACM SIGCOMM workshop on Network troubleshooting: research, theory and operations practice meet malfunctioning reality, September 03-03, 2004, Portland, Oregon, USA  [doi>10.1145/1016687.1016694]
15
Vasileios Pappas , Zhiguo Xu , Songwu Lu , Daniel Massey , Andreas Terzis , Lixia Zhang, Impact of configuration errors on DNS robustness, ACM SIGCOMM Computer Communication Review, v.34 n.4, October 2004  [doi>10.1145/1030194.1015503]
 
16
A. Salamon. Tools to manage DNS. http://www.dns.net/dnsrd/tools.html.
 
17
The Measurement Factory. DNS survey: October 2007. http://dns.measurement-factory.com/surveys/200710.html.
 
18
W. van Wanrooij and A. Pras. DNS zones revisited. In Open European Summer School and IFIP WG6.4/6.6/6.9 Workshop (EUNICE), 2005.
 
19
VeriSign. Domain name industry brief, June 2007. http://www.verisign.com/static/042161.pdf.
 
20
M. Wong and W. Schlitt. Sender policy framework (SPF) for authorizing use of domains in e-mail, version 1. IETF RFC 4408, Apr. 2006.

INDEX TERMS

Primary Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.2 Network Protocols
          Subjects: Applications (SMTP, FTP, etc.)


General Terms:
Measurement


Keywords:
dns, domain name system, zone transfer

Collaborative Colleagues:
Andrew J. Kalafut: colleagues
Craig A. Shue: colleagues
Minaxi Gupta: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2010 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player