A Real -Time Interactive Visualization System for DNS Amplification Attack Challenges

Author

Yu, Huiming ; Dai, Xiangfeng ; Baxley, Tomas ; Xu, Jinsheng

Author_Institution

Dept. of Comput. Sci. North Carolina A&T, State Univ., Durham, NC

fYear

2008

Firstpage

55

Lastpage

60

Abstract

Domain Name Service (DNS) amplification attack has become a serious issue for network security because small queries can generate massive amounts of UDP packets in response to flood the target server. This paper presents our work to develop a real-time interactive visualization system (RTIVS) for DNS amplification attack to help administrators visualize and analyze traffic, and detect the DNS amplification attack. The design of the RTIVS is based on the characteristics of the DNS amplification attack. It provides two modes that are a manual mode and an automatic mode to support reasoning and identify DNS amplification attacks. A graphic user interface is implemented to allow administrators to easily monitor network activity and analyze the large amount of UDP packets in real time. The interactive GUI also supports combination of the administrator´s knowledge, experience and judgment into the system.

Keywords

Internet; data visualisation; graphical user interfaces; interactive systems; security of data; telecommunication computing; telecommunication security; telecommunication traffic; domain name service amplification attack; graphic user interface; network security; real-time interactive visualization system; Computer crime; Computer networks; Computer science; Data visualization; Information science; Internet; Monitoring; Personal communication networks; Real time systems; Web server; Internet security; interactive visualization;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer and Information Science, 2008. ICIS 08. Seventh IEEE/ACIS International Conference on

Conference_Location

Portland, OR

Print_ISBN

978-0-7695-3131-1

Type

conf

DOI

10.1109/ICIS.2008.42

Filename

4529798