[PDF] Addressing the challenges of modern DNS a comprehensive tutorial

to changes to guarantee confidentiality of DNS queries. Attacks to forge DNS traffic led to changes to shore up the integrity of the DNS. Finally, denial-of-service attack on DNS operations have led to new DNS operations architectures. All of these developments make DNS a highly interesting, but also highly challenging research topic. This tutorial – aimed at graduate students and early-career researchers – … challenges are (i) protecting the confidentiality and (ii) guaranteeing the integrity of the information provided in the DNS, (iii) ensuring the availability of the DNS infrastructure, and (iv) detecting and preventing attacks that make use of the DNS. Last, we discuss which challenges remain open, pointing the reader towards new research areas. … for Internet Service Provider (ISP) that use them to learn more about their customers [4] (①in Fig. 1), attacks are launched to tamper with the information in the DNS to direct users to malicious content [5] ②, and the infrastructure that runs the DNS is constantly undergoing denial-of-service attacks, threatening its … lenges: (i) confidentiality of DNS queries, (ii) integrity of informa- tion stored and sent in the DNS, (iii) availability of the underlying DNS infrastructure, and (iv) abuse of the DNS in attacks and distribution of harmful content on the Internet. Over time, mul- tiple extensions and tools have been developed to address these