IIT Home Page CNR Home Page

Implementing a Passive DNS Zeitgeist

The domain name system (DNS) is a complex distributed database on which several Internet services rely on. As its monitoring is critical, researchers and internet service providers continuously monitor DNS traffic for identifying anomalies, measuring performance, and generating usage statistics.
This paper looks at DNS traffic from a different perspective; it covers the design and implementation of a passive DNS monitoring system whose goal is to understand trends, characterize economical relationships, and also track suspicious activities. The system has been developed by the Institute of Informatics and Telematics of the Italian National Research Council of Pisa, which manages the .it country code Top Level Domain (ccTLD). Deployed on .it authoritative name servers, it is currently permanently monitoring all the .it DNS traffic.

SAC 2012 - 27th Symposium On Applied Computing, Riva del Garda (Trento), Italy, 2012

IIT authors:

Type: Article in proceedings of international peer-reviewed conference
Field of reference: Information Technology and Communication Systems

File: DNS_Zeitgeist.pdf

Activity: Unità Sistemi e Sviluppo Tecnologico