"The Shape and Size of Threats: Defining a Networked System's Attack Surface"

Previous Technical Report Name:"Quantifying Systemic Dependencies Through Attack Surface Analysis"
Technical Report number:1120004
Date of Publication: 2014-10-21
Title of Publication: "The Shape and Size of Threats: Defining a Networked System's Attack Surface"
Abstract: "This paper provides the first systematic study of DNS data taken from one of the 13 servers for the .com/.net registry. DNSÂ’ generic Top Level Domains (gTLDs) such .com and .net serve resolvers from throughout the Internet and respond to billions of DNS queries every day. This study uses gTLD data to characterize the DNS resolver population and profile DNS query types. The results show a small and relatively stable set of resolvers (i.e. the top-talkers) constitute 90% of the overall traffic. The results provide a basis for understanding for this critical Internet service, insights on typical resolver behaviors and the use of IPv6 in DNS, and provides a foundation for further study of DNS behavior."
Proceedings or Venue of Publication: NPSEC '14 Proceedings of the 2014 9th IEEE Workshop on Secure Network
BibTeX:
@inproceedings{verisignlabs-conf-1120004,
                   author = {Eric Osterweil and Danny McPherson and Lixia Zhang},
                   title = {The Shape and Size of Threats: Defining a Networked System's Attack Surface},
                   booktitle = {NPSEC '14 Proceedings of the 2014 9th IEEE Workshop on Secure Network },
                   year = {2014},
                   }
  
            
File: New work ./docs/conf-1120004.pdf