Dr Pavlos Papadopoulos P.Papadopoulos@napier.ac.uk
Lecturer
Privacy-Preserving Passive DNS
Papadopoulos, Pavlos; Pitropakis, Nikolaos; Buchanan, William J.; Lo, Owen; Katsikas, Sokratis
Authors
Dr Nick Pitropakis N.Pitropakis@napier.ac.uk
Associate Professor
Prof Bill Buchanan B.Buchanan@napier.ac.uk
Professor
Dr Owen Lo O.Lo@napier.ac.uk
Senior Research Fellow
Sokratis Katsikas
Abstract
The Domain Name System (DNS) was created to resolve the IP addresses of web servers to easily remembered names. When it was initially created, security was not a major concern; nowadays, this lack of inherent security and trust has exposed the global DNS infrastructure to malicious actors. The passive DNS data collection process creates a database containing various DNS data elements, some of which are personal and need to be protected to preserve the privacy of the end users. To this end, we propose the use of distributed ledger technology. We use Hyperledger Fabric to create a permissioned blockchain, which only authorized entities can access. The proposed solution supports queries for storing and retrieving data from the blockchain ledger, allowing the use of the passive DNS database for further analysis, e.g., for the identification of malicious domain names. Additionally, it effectively protects the DNS personal data from unauthorized entities, including the administrators that can act as potential malicious insiders, and allows only the data owners to perform queries over these data. We evaluated our proposed solution by creating a proof-of-concept experimental setup that passively collects DNS data from a network and then uses the distributed ledger technology to store the data in an immutable ledger, thus providing a full historical overview of all the records.
Citation
Papadopoulos, P., Pitropakis, N., Buchanan, W. J., Lo, O., & Katsikas, S. (2020). Privacy-Preserving Passive DNS. Computers, 9(3), Article 64. https://doi.org/10.3390/computers9030064
Journal Article Type | Article |
---|---|
Acceptance Date | Aug 9, 2020 |
Online Publication Date | Aug 12, 2020 |
Publication Date | 2020-09 |
Deposit Date | Aug 12, 2020 |
Publicly Available Date | Aug 12, 2020 |
Journal | Computers |
Publisher | MDPI |
Peer Reviewed | Peer Reviewed |
Volume | 9 |
Issue | 3 |
Article Number | 64 |
Series ISSN | 2073-431X |
DOI | https://doi.org/10.3390/computers9030064 |
Keywords | passive DNS (Domain Name System); privacy-preserving; distributed ledger; blockchain; hyperledger fabric; private data collection |
Public URL | http://researchrepository.napier.ac.uk/Output/2681060 |
Publisher URL | https://www.mdpi.com/2073-431X/9/3/64 |
Files
Privacy-Preserving Passive DNS
(1.2 Mb)
PDF
Publisher Licence URL
http://creativecommons.org/licenses/by/4.0/
Copyright Statement
This is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
You might also like
E-Health: chances and challenges of distributed, service oriented architectures
(2012)
Journal Article
Formal security policy implementations in network firewalls.
(2011)
Journal Article
Who would you trust to identify you in accessing your health record?
(-0001)
Presentation / Conference Contribution
A scaleable and trusted e-Health eco-system: safi.re
(2013)
Presentation / Conference Contribution
Downloadable Citations
About Edinburgh Napier Research Repository
Administrator e-mail: repository@napier.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2025
Advanced Search