Quarterly journal published in SPbPU
and edited by prof. Peter Zegzhda
Peter the Great St. Petersburg Polytechnic University
Institute of computer sciences and technologies
information security of computer systems
Information Security Problems. Computer Systems
Published since 1999.
ISSN 2071-8217
SECURITY THREAT MODEL OF THE NETWORK DOMAIN NAME SERVICE WHEN IMPLEMENTING ATTACKING SCENARIOS

V.V. Danilov, V.A. Ovcharov

Annotation: This paper substantiates a threat model for implementing attacking scenarios on the Domain Name System (DNS) network service, taking into account current vulnerabilities in order to develop measures to ensure information security of a controlled information and telecommunications network (ITCS), namely, timely response to computer information security incidents (IS). The data obtained allows us to more fully describe the profiles of network objects that use the DNS service to identify the states of the monitored infrastructure. The use of this model can expand the capabilities of tools for detecting and preventing intruder attack scenarios.
Keywords: DNS server, DNS query, attacking scenarios, botnet, domain name resolution.
Pages 65-73