Investigation of protection of DNS servers from cache poisoning attacks

Abstract

Domain name system (DNS) plays an important role in today’s Internet surfing by

offering a hierarchical domain name resolve scheme. It performs the translation between

domain name and real IP address. DNS cache poisoning attack change or insert records in

the resolver caches so that a DNS query will return a fake IP address of the attacker’s

domain instead of the real IP address. By that way, DNS cache poisoning attacks make

damages such as identity theft to cause large losses in the network transition.To protect DNS from cache poisoning attacks, a lot of defend schemes have been

released. Those schemes increase the security by variable methods, like making domain

name case-sensitive, randomizing port, processing transaction ID, encrypt DNS query,

extending DNS system, and adding proxy. In those schemes, Security Proxy offers good

security and performance comparing to others while still get weakness that security and

efficiency cannot exist at the same time therefore should be further improved.