{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,5,30]],"date-time":"2025-05-30T05:44:52Z","timestamp":1748583892012,"version":"3.28.0"},"reference-count":30,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018,4]]},"DOI":"10.1109\/noms.2018.8406224","type":"proceedings-article","created":{"date-parts":[[2018,7,9]],"date-time":"2018-07-09T23:09:23Z","timestamp":1531177763000},"page":"1-9","source":"Crossref","is-referenced-by-count":7,"title":["Never say never: Authoritative TLD nameserver-powered DNS amplification"],"prefix":"10.1109","author":[{"given":"Marios","family":"Anagnostopoulos","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Georgios","family":"Kambourakis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Stefanos","family":"Gritzalis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"David K. Y.","family":"Yau","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"journal-title":"DNS-The Measurement Factory","year":"0","key":"ref30"},{"key":"ref10","first-page":"111","article-title":"Exit from Hell? Reducing the Impact of Amplification DDoS Attacks","author":"kuhrer","year":"2014","journal-title":"23rd USENIX Security Symposium (USENIX Security 14)"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.17487\/RFC7766"},{"journal-title":"Amplification and drdos attack defense-a survey and new perspectives","year":"2015","author":"ryba","key":"ref12"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/2663716.2663731"},{"journal-title":"RFC 2827 Network Ingress Filtering Defeating Denial of Service Attacks Which Employ IP Source Address Spoofing","year":"2000","author":"ferguson","key":"ref14"},{"journal-title":"Spoofer Project State of IP Spoofing","year":"0","key":"ref15"},{"journal-title":"DNS Response Rate Limiting (DNS RRL)","year":"2012","author":"vixie","key":"ref16"},{"journal-title":"RFC 6781 DNSSEC Operational Practices Version 2","year":"2012","author":"kolkman","key":"ref17"},{"journal-title":"RFC 7129 Authenticated Denial of Existence in the DNS","year":"2014","author":"gieben","key":"ref18"},{"journal-title":"RFC 6891 Extension Mechanisms for DNS (EDNS0)","year":"2013","author":"damas","key":"ref19"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2007.139"},{"key":"ref4","article-title":"Largest-Ever DDoS Campaign Demonstrates Danger of New Attack Method","author":"lemos","year":"2013","journal-title":"eWeek"},{"journal-title":"RFC 4035 Protocol modifications for the DNS security extensions","year":"2005","author":"arends","key":"ref27"},{"volume":"20","journal-title":"Internet Security Threat Report (ISTR20)","year":"2015","key":"ref3"},{"journal-title":"ICANN New Generic Top-level Domains","year":"0","key":"ref6"},{"key":"ref29","article-title":"Corrupted DNS resolution paths: The rise of a malicious resolution authority","author":"dagon","year":"2008","journal-title":"Proceedings of the Network and Distributed Security Symposium (NDSS'96)"},{"journal-title":"Internet Assigned Numbers Authority (IANA) Root files","year":"0","key":"ref5"},{"key":"ref8","first-page":"201","author":"anagnostopoulos","year":"2012","journal-title":"DNSSEC vs DNSCurve A Side-by-Side Comparison"},{"journal-title":"Dnssec deployment report","year":"0","author":"lamb","key":"ref7"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-89173-4_16"},{"journal-title":"Open Resolver Project","year":"0","key":"ref9"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23233"},{"journal-title":"BIND 9 Administrator Reference Manual","year":"2014","key":"ref20"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2013.10.001"},{"journal-title":"A-root Query Volume (Millions\/Day)","year":"2017","key":"ref21"},{"journal-title":"DNS amplification attacks (Preliminary Release)","year":"2006","author":"vaughn","key":"ref24"},{"year":"0","key":"ref23"},{"journal-title":"RFC 4034 Resource records for the DNS security extensions","year":"2005","author":"arends","key":"ref26"},{"journal-title":"RFC 4033 DNS security introduction and requirements","year":"2005","author":"arends","key":"ref25"}],"event":{"name":"NOMS 2018 - 2018 IEEE\/IFIP Network Operations and Management Symposium","start":{"date-parts":[[2018,4,23]]},"location":"Taipei","end":{"date-parts":[[2018,4,27]]}},"container-title":["NOMS 2018 - 2018 IEEE\/IFIP Network Operations and Management Symposium"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8399136\/8406102\/08406224.pdf?arnumber=8406224","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2018,7,23]],"date-time":"2018-07-23T23:00:15Z","timestamp":1532386815000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8406224\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,4]]},"references-count":30,"URL":"https:\/\/doi.org\/10.1109\/noms.2018.8406224","relation":{},"subject":[],"published":{"date-parts":[[2018,4]]}}}