{"id":"https://openalex.org/W2028110717","doi":"https://doi.org/10.1145/2663716.2663731","title":"DNSSEC and its potential for DDoS attacks","display_name":"DNSSEC and its potential for DDoS attacks","publication_year":2014,"publication_date":"2014-11-05","ids":{"openalex":"https://openalex.org/W2028110717","doi":"https://doi.org/10.1145/2663716.2663731","mag":"2028110717"},"language":"en","primary_location":{"id":"doi:10.1145/2663716.2663731","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2663716.2663731","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2014 Conference on Internet Measurement Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://ris.utwente.nl/ws/files/5493017/imc101-vanrijswijk.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5091643049","display_name":"Roland van Rijswijk-Deij","orcid":"https://orcid.org/0000-0002-0249-8776"},"institutions":[{"id":"https://openalex.org/I94624287","display_name":"University of Twente","ror":"https://ror.org/006hf6230","country_code":"NL","type":"education","lineage":["https://openalex.org/I94624287"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Roland van Rijswijk-Deij","raw_affiliation_strings":["University of Twente, Enschede, Netherlands"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Twente, Enschede, Netherlands","institution_ids":["https://openalex.org/I94624287"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5025537461","display_name":"Anna Sperotto","orcid":"https://orcid.org/0000-0002-9481-5846"},"institutions":[{"id":"https://openalex.org/I94624287","display_name":"University of Twente","ror":"https://ror.org/006hf6230","country_code":"NL","type":"education","lineage":["https://openalex.org/I94624287"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Anna Sperotto","raw_affiliation_strings":["University of Twente, Enschede, Netherlands"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Twente, Enschede, Netherlands","institution_ids":["https://openalex.org/I94624287"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5067140003","display_name":"Aiko Pras","orcid":"https://orcid.org/0000-0002-5091-8608"},"institutions":[{"id":"https://openalex.org/I94624287","display_name":"University of Twente","ror":"https://ror.org/006hf6230","country_code":"NL","type":"education","lineage":["https://openalex.org/I94624287"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Aiko Pras","raw_affiliation_strings":["University of Twente, Enschede, Netherlands"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Twente, Enschede, Netherlands","institution_ids":["https://openalex.org/I94624287"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":11.8764,"has_fulltext":true,"cited_by_count":101,"citation_normalized_percentile":{"value":0.98706439,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"449","last_page":"460"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12326","display_name":"Network Packet Processing and Optimization","score":0.9979000091552734,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/denial-of-service-attack","display_name":"Denial-of-service attack","score":0.8218448162078857},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.729263186454773},{"id":"https://openalex.org/keywords/domain-name-system","display_name":"Domain Name System","score":0.7162707448005676},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5883404016494751},{"id":"https://openalex.org/keywords/software-deployment","display_name":"Software deployment","score":0.48467281460762024},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.190883070230484},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.05992504954338074},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.0582890510559082}],"concepts":[{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.8218448162078857},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.729263186454773},{"id":"https://openalex.org/C35026560","wikidata":"https://www.wikidata.org/wiki/Q8767","display_name":"Domain Name System","level":3,"score":0.7162707448005676},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5883404016494751},{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.48467281460762024},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.190883070230484},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.05992504954338074},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0582890510559082}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/2663716.2663731","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2663716.2663731","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2014 Conference on Internet Measurement Conference","raw_type":"proceedings-article"},{"id":"pmh:oai:ris.utwente.nl:publications/cb44e199-21c2-4486-ba0e-8a27c80b8a4f","is_oa":true,"landing_page_url":"https://research.utwente.nl/en/publications/cb44e199-21c2-4486-ba0e-8a27c80b8a4f","pdf_url":"https://ris.utwente.nl/ws/files/5493017/imc101-vanrijswijk.pdf","source":{"id":"https://openalex.org/S4406922991","display_name":"University of Twente Research Information","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"van Rijswijk, R M, Sperotto, A & Pras, A 2014, DNSSEC and Its Potential for DDoS Attacks - A Comprehensive Measurement Study. in Proceedings of the Fourteenth ACM Internet Measurement Conference, ACM IMC 2014. Association for Computing Machinery, New York, pp. 449-460. https://doi.org/10.1145/2663716.2663731","raw_type":"info:eu-repo/semantics/publishedVersion"}],"best_oa_location":{"id":"pmh:oai:ris.utwente.nl:publications/cb44e199-21c2-4486-ba0e-8a27c80b8a4f","is_oa":true,"landing_page_url":"https://research.utwente.nl/en/publications/cb44e199-21c2-4486-ba0e-8a27c80b8a4f","pdf_url":"https://ris.utwente.nl/ws/files/5493017/imc101-vanrijswijk.pdf","source":{"id":"https://openalex.org/S4406922991","display_name":"University of Twente Research Information","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"van Rijswijk, R M, Sperotto, A & Pras, A 2014, DNSSEC and Its Potential for DDoS Attacks - A Comprehensive Measurement Study. in Proceedings of the Fourteenth ACM Internet Measurement Conference, ACM IMC 2014. Association for Computing Machinery, New York, pp. 449-460. https://doi.org/10.1145/2663716.2663731","raw_type":"info:eu-repo/semantics/publishedVersion"},"sustainable_development_goals":[{"score":0.6800000071525574,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320334960","display_name":"Seventh Framework Programme","ror":"https://ror.org/00k4n6c32"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2028110717.pdf","grobid_xml":"https://content.openalex.org/works/W2028110717.grobid-xml"},"referenced_works_count":24,"referenced_works":["https://openalex.org/W148814131","https://openalex.org/W157634311","https://openalex.org/W1867219652","https://openalex.org/W1989454965","https://openalex.org/W2009779276","https://openalex.org/W2022350629","https://openalex.org/W2033378068","https://openalex.org/W2066943848","https://openalex.org/W2074028702","https://openalex.org/W2111427271","https://openalex.org/W2116696275","https://openalex.org/W2157157130","https://openalex.org/W2159476783","https://openalex.org/W2162969618","https://openalex.org/W2185935368","https://openalex.org/W2239211855","https://openalex.org/W2289022551","https://openalex.org/W2295899026","https://openalex.org/W2298236901","https://openalex.org/W2742369599","https://openalex.org/W2779492526","https://openalex.org/W4213362721","https://openalex.org/W4232445383","https://openalex.org/W4300559383"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2183899684","https://openalex.org/W1484565796","https://openalex.org/W4230824443","https://openalex.org/W3026018975","https://openalex.org/W2185673024","https://openalex.org/W4377970398","https://openalex.org/W2142794587"],"abstract_inverted_index":{"Over":[0],"the":[1,8,16,38,84,142,158,168,183,202],"past":[2],"five":[3],"years":[4],"we":[5,109],"have":[6,222],"witnessed":[7],"introduction":[9],"of":[10,40,50,86,126,133,151,160,217],"DNSSEC,":[11],"a":[12,34,63,103,119,123,148,175,215],"security":[13],"extension":[14],"to":[15,147,210,234],"DNS":[17,25,60],"that":[18,79,164,220],"relies":[19],"on":[20,102,122],"digital":[21],"signatures.":[22],"DNSSEC":[23,41,80,165,179],"strengthens":[24],"by":[26],"preventing":[27],"attacks":[28,146],"such":[29],"as":[30],"cache":[31],"poisoning.":[32],"However,":[33],"common":[35],"argument":[36],"against":[37],"deployment":[39],"is":[42],"its":[43],"potential":[44,91,143],"for":[45,62,71,92,144,186,192,225],"abuse":[46,93],"in":[47,54,94,137,206],"Distributed":[48],"Denial":[49],"Service":[51],"(DDoS)":[52],"attacks,":[53],"particular":[55,188],"reflection":[56],"and":[57,140,227],"amplification":[58,145],"attacks.":[59,89],"responses":[61,194],"DNSSEC-signed":[64,95,127],"domain":[65],"are":[66],"typically":[67],"larger":[68,200],"than":[69,201],"those":[70],"an":[72],"unsigned":[73],"domain,":[74],"thus,":[75],"it":[76],"may":[77,195],"seem":[78],"could":[81],"actually":[82],"worsen":[83],"problem":[85],"DNS-based":[87],"DDoS":[88,169],"The":[90],"domains":[96,136,152],"has,":[97],"however,":[98,173],"never":[99],"been":[100],"assessed":[101],"large":[104,124],"scale.":[105],"In":[106],"this":[107,114],"paper":[108],"establish":[110],"ground":[111],"truth":[112],"around":[113],"open":[115],"question.":[116],"We":[117,212],"perform":[118],"detailed":[120],"measurement":[121],"dataset":[125],"domains,":[128],"covering":[129],"70%":[130],"(2.5":[131],"million)":[132],"all":[134],"signed":[135],"operation":[138],"today,":[139],"compare":[141],"representative":[149],"sample":[150],"without":[153],"DNSSEC.":[154],"At":[155],"first":[156],"glance,":[157],"outcome":[159],"these":[161,235],"measurements":[162],"confirms":[163],"indeed":[166],"worsens":[167],"phenomenon.":[170],"Closer":[171],"examination,":[172],"gives":[174],"more":[176],"nuanced":[177],"picture.":[178],"really":[180],"only":[181],"makes":[182],"situation":[184],"worse":[185],"one":[187],"query":[189,204],"type":[190],"(ANY),":[191],"which":[193],"be":[196],"over":[197],"50":[198],"times":[199],"original":[203],"(and":[205],"rare":[207],"cases":[208],"up":[209],"179x).":[211],"also":[213],"discuss":[214],"number":[216],"mitigation":[218,236],"strategies":[219],"can":[221],"immediate":[223],"impact":[224],"operators":[226],"suggest":[228],"future":[229],"research":[230],"directions":[231],"with":[232],"regards":[233],"strategies.":[237]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":5},{"year":2024,"cited_by_count":4},{"year":2023,"cited_by_count":7},{"year":2022,"cited_by_count":7},{"year":2021,"cited_by_count":12},{"year":2020,"cited_by_count":14},{"year":2019,"cited_by_count":6},{"year":2018,"cited_by_count":12},{"year":2017,"cited_by_count":12},{"year":2016,"cited_by_count":12},{"year":2015,"cited_by_count":8},{"year":2014,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2016-06-24T00:00:00"}