{"id":"https://openalex.org/W2918782330","doi":"https://doi.org/10.1109/infocom.2019.8737514","title":"Collaborative Client-Side DNS Cache Poisoning Attack","display_name":"Collaborative Client-Side DNS Cache Poisoning Attack","publication_year":2019,"publication_date":"2019-04-01","ids":{"openalex":"https://openalex.org/W2918782330","doi":"https://doi.org/10.1109/infocom.2019.8737514","mag":"2918782330"},"language":"en","primary_location":{"id":"doi:10.1109/infocom.2019.8737514","is_oa":false,"landing_page_url":"https://doi.org/10.1109/infocom.2019.8737514","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE INFOCOM 2019 - IEEE Conference on Computer Communications","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5091100953","display_name":"Fatemah Alharbi","orcid":"https://orcid.org/0000-0003-3594-6122"},"institutions":[{"id":"https://openalex.org/I103635307","display_name":"University of California, Riverside","ror":"https://ror.org/03nawhv43","country_code":"US","type":"education","lineage":["https://openalex.org/I103635307"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Fatemah Alharbi","raw_affiliation_strings":["Computer Science Department, University of California Riverside"],"affiliations":[{"raw_affiliation_string":"Computer Science Department, University of California Riverside","institution_ids":["https://openalex.org/I103635307"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5024615256","display_name":"Jie Chang","orcid":"https://orcid.org/0000-0002-8484-482X"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Jie Chang","raw_affiliation_strings":["LinkSure Network, China"],"affiliations":[{"raw_affiliation_string":"LinkSure Network, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101914471","display_name":"Yuchen Zhou","orcid":"https://orcid.org/0000-0002-5961-2218"},"institutions":[{"id":"https://openalex.org/I87182695","display_name":"Universidad del Noreste","ror":"https://ror.org/02ahky613","country_code":"MX","type":"education","lineage":["https://openalex.org/I87182695"]}],"countries":["MX"],"is_corresponding":false,"raw_author_name":"Yuchen Zhou","raw_affiliation_strings":["Information Assurance Department, Northeastern University"],"affiliations":[{"raw_affiliation_string":"Information Assurance Department, Northeastern University","institution_ids":["https://openalex.org/I87182695"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5029813358","display_name":"Feng Qian","orcid":"https://orcid.org/0000-0002-9437-3021"},"institutions":[{"id":"https://openalex.org/I130238516","display_name":"University of Minnesota","ror":"https://ror.org/017zqws13","country_code":"US","type":"education","lineage":["https://openalex.org/I130238516"]},{"id":"https://openalex.org/I4210101327","display_name":"Twin Cities Orthopedics","ror":"https://ror.org/01en4s460","country_code":"US","type":"healthcare","lineage":["https://openalex.org/I4210101327"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Feng Qian","raw_affiliation_strings":["Computer Science Department, University of Minnesota \u2013Twin City"],"affiliations":[{"raw_affiliation_string":"Computer Science Department, University of Minnesota \u2013Twin City","institution_ids":["https://openalex.org/I4210101327","https://openalex.org/I130238516"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5022038961","display_name":"Zhiyun Qian","orcid":"https://orcid.org/0000-0003-1506-2522"},"institutions":[{"id":"https://openalex.org/I103635307","display_name":"University of California, Riverside","ror":"https://ror.org/03nawhv43","country_code":"US","type":"education","lineage":["https://openalex.org/I103635307"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Zhiyun Qian","raw_affiliation_strings":["Computer Science Department, University of California Riverside"],"affiliations":[{"raw_affiliation_string":"Computer Science Department, University of California Riverside","institution_ids":["https://openalex.org/I103635307"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5059614371","display_name":"Nael Abu\u2010Ghazaleh","orcid":"https://orcid.org/0000-0002-9485-5370"},"institutions":[{"id":"https://openalex.org/I103635307","display_name":"University of California, Riverside","ror":"https://ror.org/03nawhv43","country_code":"US","type":"education","lineage":["https://openalex.org/I103635307"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Nael Abu-Ghazaleh","raw_affiliation_strings":["Computer Science Department, University of California Riverside"],"affiliations":[{"raw_affiliation_string":"Computer Science Department, University of California Riverside","institution_ids":["https://openalex.org/I103635307"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5091100953"],"corresponding_institution_ids":["https://openalex.org/I103635307"],"apc_list":null,"apc_paid":null,"fwci":4.5983,"has_fulltext":false,"cited_by_count":43,"citation_normalized_percentile":{"value":0.95187731,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"1153","last_page":"1161"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10651","display_name":"IPv6, Mobility, Handover, Networks, Security","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9977999925613403,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7896932363510132},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.5586957335472107},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5401484370231628},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.5354447960853577},{"id":"https://openalex.org/keywords/resolver","display_name":"Resolver","score":0.4865485727787018},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.4633607864379883},{"id":"https://openalex.org/keywords/round-robin-dns","display_name":"Round-robin DNS","score":0.4462658762931824},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.43656760454177856},{"id":"https://openalex.org/keywords/cache","display_name":"Cache","score":0.4214687943458557},{"id":"https://openalex.org/keywords/domain-name-system","display_name":"Domain Name System","score":0.41833627223968506},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.33707737922668457},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.15435484051704407}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7896932363510132},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.5586957335472107},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5401484370231628},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.5354447960853577},{"id":"https://openalex.org/C80156102","wikidata":"https://www.wikidata.org/wiki/Q788036","display_name":"Resolver","level":3,"score":0.4865485727787018},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.4633607864379883},{"id":"https://openalex.org/C102359118","wikidata":"https://www.wikidata.org/wiki/Q178163","display_name":"Round-robin DNS","level":4,"score":0.4462658762931824},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.43656760454177856},{"id":"https://openalex.org/C115537543","wikidata":"https://www.wikidata.org/wiki/Q165596","display_name":"Cache","level":2,"score":0.4214687943458557},{"id":"https://openalex.org/C35026560","wikidata":"https://www.wikidata.org/wiki/Q8767","display_name":"Domain Name System","level":3,"score":0.41833627223968506},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.33707737922668457},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.15435484051704407},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.0},{"id":"https://openalex.org/C165005293","wikidata":"https://www.wikidata.org/wiki/Q1074500","display_name":"Chip","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/infocom.2019.8737514","is_oa":false,"landing_page_url":"https://doi.org/10.1109/infocom.2019.8737514","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE INFOCOM 2019 - IEEE Conference on Computer Communications","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.7799999713897705,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":26,"referenced_works":["https://openalex.org/W52006136","https://openalex.org/W93328664","https://openalex.org/W106237003","https://openalex.org/W1491727209","https://openalex.org/W1590544288","https://openalex.org/W1615970822","https://openalex.org/W1667466877","https://openalex.org/W1976066853","https://openalex.org/W2070670160","https://openalex.org/W2072730946","https://openalex.org/W2079569045","https://openalex.org/W2081464537","https://openalex.org/W2086481317","https://openalex.org/W2095562177","https://openalex.org/W2096904182","https://openalex.org/W2097981871","https://openalex.org/W2123002482","https://openalex.org/W2133467782","https://openalex.org/W2145327498","https://openalex.org/W2159256070","https://openalex.org/W2167370920","https://openalex.org/W2325370678","https://openalex.org/W2401862431","https://openalex.org/W2564063159","https://openalex.org/W2763340581","https://openalex.org/W6603819222"],"related_works":["https://openalex.org/W1542874264","https://openalex.org/W4299443900","https://openalex.org/W2384391311","https://openalex.org/W2073523380","https://openalex.org/W1598490273","https://openalex.org/W2026723287","https://openalex.org/W4389543495","https://openalex.org/W2183899684","https://openalex.org/W4368370523","https://openalex.org/W2756317940"],"abstract_inverted_index":{"DNS":[0,8,25,32,51,64,70,75,92,117,180],"poisoning":[1,52,65,76,200],"attacks":[2,21,53,66],"inject":[3,178],"malicious":[4,18,179],"entries":[5],"into":[6],"the":[7,39,68,78,115,125,135,138,145,155,161],"resolution":[9],"system,":[10],"allowing":[11,27],"an":[12,101,110,185],"attacker":[13,103],"to":[14,17,29,90,104,113,150,157],"redirect":[15],"clients":[16],"servers.":[19],"These":[20],"typically":[22],"target":[23],"a":[24,31,60,107,120,165,194],"resolver":[26],"attackers":[28],"poison":[30,114],"entry":[33],"for":[34],"all":[35,85],"machines":[36],"that":[37,174],"use":[38],"compromised":[40],"resolver.":[41],"However,":[42],"recent":[43],"defenses":[44,95],"can":[45,176],"effectively":[46],"protect":[47],"resolvers":[48],"rendering":[49],"classical":[50],"ineffective.":[54],"In":[55],"this":[56,197],"paper,":[57],"we":[58,175,192],"present":[59],"new":[61],"class":[62],"of":[63,109,137,187,189,199],"targeting":[67,96],"client-side":[69],"cache.":[71],"The":[72],"attack":[73,99,126,156],"initiates":[74],"on":[77,119,127,183],"client":[79,121,162],"cache,":[80],"which":[81],"is":[82,163],"used":[83],"in":[84],"main":[86],"stream":[87],"operating":[88,140],"systems":[89,141],"improve":[91],"performance,":[93],"circumventing":[94],"resolvers.":[97],"Our":[98,171],"allows":[100],"off-path":[102],"collaborate":[105],"with":[106,182],"piece":[108],"unprivileged":[111],"malware":[112],"OS-wide":[116],"cache":[118],"machine.":[122],"We":[123,152],"developed":[124],"Windows,":[128],"Mac":[129],"OS,":[130],"and":[131,144],"Ubuntu":[132],"Linux.":[133],"Interestingly,":[134],"behaviors":[136],"three":[139],"are":[142],"distinct":[143],"vulnerabilities":[146],"require":[147],"different":[148],"strategies":[149],"exploit.":[151],"also":[153],"generalize":[154],"work":[158],"even":[159],"when":[160],"behind":[164],"Network":[166],"Address":[167],"Translation":[168],"(NAT)":[169],"router.":[170],"results":[172],"show":[173],"reliably":[177],"mappings,":[181],"average,":[184],"order":[186],"tens":[188],"seconds.":[190],"Finally,":[191],"propose":[193],"defense":[195],"against":[196],"type":[198],"attacks.":[201]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":11},{"year":2022,"cited_by_count":7},{"year":2021,"cited_by_count":8},{"year":2020,"cited_by_count":10},{"year":2019,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}