Modern critical infrastructure assets are exposed to security threats arising from their use of IP networks and the Domain Name System (DNS). This paper focuses on the health of DNS. Indeed, due to the increased reliance on the Internet, the degradation of DNS could have significant consequences for the critical infrastructure. This paper describes the Measuring Naming System (MeNSa), a framework designed to provide a formal methodology, metrics and tools for evaluating DNS health. Additionally, it proposes a process for aggregating health and security metrics to provide potential threat indicators. Results from a scenario-based experiment demonstrate the utility of the framework and aggregation metrics.
Measuring name system health / Casalicchio, Emiliano; Caselli, Marco; Coletta, Alessio; Di Blasi, Salvatore; Fovino, Igor Nai. - STAMPA. - 390:(2012), pp. 155-169. (Intervento presentato al convegno 6th Annual IFIP Working Group 11.10 International Conference on Critical Infrastructure Protection, ICCIP 2012 tenutosi a Washington, DC, usa nel 2012) [10.1007/978-3-642-35764-0_12].
Measuring name system health
Casalicchio, Emiliano
;
2012
Abstract
Modern critical infrastructure assets are exposed to security threats arising from their use of IP networks and the Domain Name System (DNS). This paper focuses on the health of DNS. Indeed, due to the increased reliance on the Internet, the degradation of DNS could have significant consequences for the critical infrastructure. This paper describes the Measuring Naming System (MeNSa), a framework designed to provide a formal methodology, metrics and tools for evaluating DNS health. Additionally, it proposes a process for aggregating health and security metrics to provide potential threat indicators. Results from a scenario-based experiment demonstrate the utility of the framework and aggregation metrics.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
