Secure DNS from amplification attack by using modified bloom filters

Domain Name System (DNS) is the vital part of the internet world. One of the attacks on DNS is an amplification attack, in which IP is spoofed by the eavesdropper in order to launch a bandwidth consumption attack. In this attack Bulk of responses are received by the victim server in a response to a single query. In this paper the structure of the Bloom Filter is modified and its defense against the amplification attack is proposed. In this proposed solution, we used a modified bloom filter in which we have added one more property that is, we can edit its membership, such as newcomer, old one and black listed old member. Through this when old members come after a specific interval of time, they are going to register themselves as newcomers in bloom filter and this bloom filter will be placed near the victim ISP or it organization router. So when the attacker initiates a query, after a certain check it can be put on the black list.