Security

DNS Spoofing Attack Simulation for Model-Based Security Evaluation

Download Now Free registration required

Executive Summary

Security of computer systems and networks has become very significant nowadays. Introducing and using a unified framework for modeling and Quantitative Security Evaluation (QSE) is an open problem. The results of the study on drawbacks of the existing security assessment methodologies motivated one to use a simulation framework for model-based security evaluation. The authors have used Discrete-Event Simulation (DES) and the SimEvents tool for QSE of a Domain Name System (DNS). First, the normal operation of the DNS is simulated. Then, an attacker is added to the model. The aim is to evaluate the instantaneous availability of DNS as an important measure of security. Finally, as a case study, DNS spoofing attack model is constructed and the availability of the attacked system is evaluated.

  • Format: PDF
  • Size: 1363.8 KB