{"id":"https://openalex.org/W4322764370","doi":"https://doi.org/10.1145/3579440","title":"Detecting and Measuring Security Risks of Hosting-Based Dangling Domains","display_name":"Detecting and Measuring Security Risks of Hosting-Based Dangling Domains","publication_year":2023,"publication_date":"2023-02-27","ids":{"openalex":"https://openalex.org/W4322764370","doi":"https://doi.org/10.1145/3579440"},"language":"en","primary_location":{"id":"doi:10.1145/3579440","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3579440","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3579440","source":{"id":"https://openalex.org/S4210193547","display_name":"Proceedings of the ACM on Measurement and Analysis of Computing Systems","issn_l":"2476-1249","issn":["2476-1249"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM on Measurement and Analysis of Computing Systems","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3579440","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5018482133","display_name":"Mingming Zhang","orcid":"https://orcid.org/0000-0001-9797-6875"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Mingming Zhang","raw_affiliation_strings":["Tsinghua University, Beijing, China"],"affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5043327734","display_name":"Xiang Li","orcid":"https://orcid.org/0000-0001-7388-1329"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiang Li","raw_affiliation_strings":["Tsinghua University, Beijing, China"],"affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101694986","display_name":"Baojun Liu","orcid":"https://orcid.org/0000-0002-9032-8063"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Baojun Liu","raw_affiliation_strings":["Tsinghua University and Quan Cheng Laboratory, Beijing, China"],"affiliations":[{"raw_affiliation_string":"Tsinghua University and Quan Cheng Laboratory, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5033482742","display_name":"Jianyu Lu","orcid":"https://orcid.org/0000-0003-2508-6608"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Jianyu Lu","raw_affiliation_strings":["QI-ANXIN Technology Research Institute, Beijing, China"],"affiliations":[{"raw_affiliation_string":"QI-ANXIN Technology Research Institute, Beijing, China","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5070997167","display_name":"Yiming Zhang","orcid":"https://orcid.org/0000-0002-6774-5299"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yiming Zhang","raw_affiliation_strings":["Tsinghua University, Beijing, China"],"affiliations":[{"raw_affiliation_string":"Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5041795098","display_name":"Jianjun Chen","orcid":"https://orcid.org/0000-0001-7511-1117"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jianjun Chen","raw_affiliation_strings":["Tsinghua University and Zhongguancun Laboratory, Beijing, China"],"affiliations":[{"raw_affiliation_string":"Tsinghua University and Zhongguancun Laboratory, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5067799841","display_name":"Haixin Duan","orcid":"https://orcid.org/0000-0003-0083-733X"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Haixin Duan","raw_affiliation_strings":["Tsinghua University and Quan Cheng Laboratory, Beijing, China"],"affiliations":[{"raw_affiliation_string":"Tsinghua University and Quan Cheng Laboratory, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5027549447","display_name":"Shuang Hao","orcid":"https://orcid.org/0000-0003-2756-6015"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Shuang Hao","raw_affiliation_strings":["University of Texas at Dallas, Dallas, TX, USA"],"affiliations":[{"raw_affiliation_string":"University of Texas at Dallas, Dallas, TX, USA","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5102821288","display_name":"Xiaofeng Zheng","orcid":"https://orcid.org/0000-0002-7130-6029"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiaofeng Zheng","raw_affiliation_strings":["Tsinghua University and QI-ANXIN Technology Research Institute, Beijing, China"],"affiliations":[{"raw_affiliation_string":"Tsinghua University and QI-ANXIN Technology Research Institute, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":9,"corresponding_author_ids":["https://openalex.org/A5018482133"],"corresponding_institution_ids":["https://openalex.org/I99065089"],"apc_list":null,"apc_paid":null,"fwci":4.53,"has_fulltext":true,"cited_by_count":10,"citation_normalized_percentile":{"value":0.94856546,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":97,"max":99},"biblio":{"volume":"7","issue":"1","first_page":"1","last_page":"28"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11478","display_name":"Caching and Content Delivery","score":0.9969000220298767,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/scalability","display_name":"Scalability","score":0.6894459128379822},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6792742609977722},{"id":"https://openalex.org/keywords/domain","display_name":"Domain (mathematical analysis)","score":0.6786196231842041},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6271795034408569},{"id":"https://openalex.org/keywords/scale","display_name":"Scale (ratio)","score":0.4321001172065735},{"id":"https://openalex.org/keywords/security-analysis","display_name":"Security analysis","score":0.41398999094963074},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.1563628911972046}],"concepts":[{"id":"https://openalex.org/C48044578","wikidata":"https://www.wikidata.org/wiki/Q727490","display_name":"Scalability","level":2,"score":0.6894459128379822},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6792742609977722},{"id":"https://openalex.org/C36503486","wikidata":"https://www.wikidata.org/wiki/Q11235244","display_name":"Domain (mathematical analysis)","level":2,"score":0.6786196231842041},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6271795034408569},{"id":"https://openalex.org/C2778755073","wikidata":"https://www.wikidata.org/wiki/Q10858537","display_name":"Scale (ratio)","level":2,"score":0.4321001172065735},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.41398999094963074},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.1563628911972046},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3579440","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3579440","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3579440","source":{"id":"https://openalex.org/S4210193547","display_name":"Proceedings of the ACM on Measurement and Analysis of Computing Systems","issn_l":"2476-1249","issn":["2476-1249"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM on Measurement and Analysis of Computing Systems","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1145/3579440","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3579440","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3579440","source":{"id":"https://openalex.org/S4210193547","display_name":"Proceedings of the ACM on Measurement and Analysis of Computing Systems","issn_l":"2476-1249","issn":["2476-1249"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM on Measurement and Analysis of Computing Systems","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1121271761","display_name":null,"funder_award_id":"Program","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G1842301749","display_name":null,"funder_award_id":"62272265","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G2087396116","display_name":null,"funder_award_id":"China","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G3317480652","display_name":null,"funder_award_id":"Science","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G391238517","display_name":null,"funder_award_id":", and","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G4259928007","display_name":null,"funder_award_id":"62102218","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G5994120800","display_name":null,"funder_award_id":"Natural","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G6645987955","display_name":null,"funder_award_id":"U19B2034","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G6854417668","display_name":null,"funder_award_id":"U1836213","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4322764370.pdf","grobid_xml":"https://content.openalex.org/works/W4322764370.grobid-xml"},"referenced_works_count":16,"referenced_works":["https://openalex.org/W1774758602","https://openalex.org/W1984487609","https://openalex.org/W1988922130","https://openalex.org/W1998458784","https://openalex.org/W2081036380","https://openalex.org/W2118226475","https://openalex.org/W2291531368","https://openalex.org/W2344804892","https://openalex.org/W2535407856","https://openalex.org/W2791815824","https://openalex.org/W2981299629","https://openalex.org/W3093996454","https://openalex.org/W3110237032","https://openalex.org/W3208414471","https://openalex.org/W4324007211","https://openalex.org/W6929337317"],"related_works":["https://openalex.org/W2389214306","https://openalex.org/W2965083567","https://openalex.org/W4235240664","https://openalex.org/W1838576100","https://openalex.org/W2757182831","https://openalex.org/W2095886385","https://openalex.org/W2089704382","https://openalex.org/W1983399550","https://openalex.org/W97075385","https://openalex.org/W2357523926"],"abstract_inverted_index":{"Public":[0],"hosting":[1,132],"services":[2,133],"provide":[3],"convenience":[4],"for":[5,109],"domain":[6,20,38,51,60,111,148,184,220],"owners":[7],"to":[8,23,86,155,183,231],"build":[9],"web":[10],"applications":[11],"with":[12,114],"better":[13],"scalability":[14],"and":[15,122,138,172,207,209,239,243],"security.":[16],"However,":[17,76],"if":[18],"a":[19,31,45,56,92,105,135,163,211],"name":[21],"points":[22],"released":[24],"service":[25],"endpoints":[26],"(e.g.,":[27,241],"nameservers":[28],"allocated":[29],"by":[30,39,103],"provider),":[32],"adversaries":[33],"can":[34],"take":[35],"over":[36,188],"the":[37,41,69,119,124,157,168,202,232],"applying":[40],"same":[42],"endpoints.":[43],"Such":[44],"security":[46,199,233],"threat":[47],"is":[48],"called":[49],"\"hosting-based":[50],"takeover''.":[52],"In":[53,95],"recent":[54],"years,":[55],"large":[57,93],"number":[58],"of":[59,71,147,159,170,213,219,236],"takeover":[61],"incidents":[62],"have":[63,73,228,245],"occurred;":[64],"even":[65],"well-known":[66],"websites":[67],"like":[68,205],"subdomains":[70,158,176],"microsoft.com":[72],"been":[74,81],"impacted.":[75],"until":[77],"now,":[78],"there":[79],"has":[80],"no":[82],"effective":[83],"detection":[84,120,125],"system":[85],"identify":[87],"these":[88],"vulnerable":[89,131,142,182],"domains":[90,143,181],"on":[91,162,201],"scale.":[94],"this":[96,100],"paper,":[97],"we":[98,195,227],"fill":[99],"research":[101],"gap":[102],"presenting":[104],"novel":[106],"framework,":[107],"HostingChecker,":[108],"detecting":[110,141],"takeovers.":[112],"Compared":[113],"previous":[115,192],"work,":[116],"HostingChecker":[117,171],"expands":[118],"scope":[121],"improves":[123],"efficiency":[126],"by:":[127],"(i)":[128],"systematically":[129],"identifying":[130],"using":[134],"semi-automated":[136],"method;":[137],"(ii)":[139],"effectively":[140],"through":[144],"passive":[145],"reconstruction":[146],"dependency":[149],"chains.":[150],"The":[151],"framework":[152],"enables":[153],"us":[154],"detect":[156,174],"Tranco":[160,178],"sites":[161],"daily":[164],"basis.":[165],"We":[166],"evaluate":[167],"effectiveness":[169],"eventually":[173],"10,351":[175],"from":[177],"Top-1M":[179],"apex":[180],"takeover,":[185],"which":[186],"are":[187],"8\u00d7":[189],"more":[190],"than":[191],"findings.":[193],"Furthermore,":[194],"conduct":[196],"an":[197],"in-depth":[198],"analysis":[200],"affected":[203,237],"vendors,":[204,238],"Amazon":[206],"Alibaba,":[208],"gain":[210],"suite":[212],"new":[214],"insights,":[215],"including":[216],"flawed":[217],"implementation":[218],"ownership":[221],"validation.":[222],"Following":[223],"responsible":[224],"disclosure":[225],"processes,":[226],"reported":[229],"issues":[230],"response":[234],"centers":[235],"some":[240],"Baidu":[242],"Tencent)":[244],"adopted":[246],"our":[247],"mitigation.":[248]},"counts_by_year":[{"year":2025,"cited_by_count":6},{"year":2023,"cited_by_count":4}],"updated_date":"2026-04-10T15:06:20.359241","created_date":"2025-10-10T00:00:00"}