{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,27]],"date-time":"2026-01-27T22:32:51Z","timestamp":1769553171411,"version":"3.49.0"},"publisher-location":"New York, NY, USA","reference-count":23,"publisher":"ACM","license":[{"start":{"date-parts":[[2014,11,5]],"date-time":"2014-11-05T00:00:00Z","timestamp":1415145600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/501100004963","name":"Seventh Framework Programme","doi-asserted-by":"publisher","award":["FLAMINGO Network of Excellence Project (318488)"],"award-info":[{"award-number":["FLAMINGO Network of Excellence Project (318488)"]}],"id":[{"id":"10.13039\/501100004963","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Dutch Economic Structure Enhancing Fund (FES)","award":["GigaPort3"],"award-info":[{"award-number":["GigaPort3"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2014,11,5]]},"DOI":"10.1145\/2663716.2663731","type":"proceedings-article","created":{"date-parts":[[2014,11,11]],"date-time":"2014-11-11T13:40:05Z","timestamp":1415713205000},"page":"449-460","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":83,"title":["DNSSEC and its potential for DDoS attacks"],"prefix":"10.1145","author":[{"given":"Roland","family":"van Rijswijk-Deij","sequence":"first","affiliation":[{"name":"University of Twente, Enschede, Netherlands"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Anna","family":"Sperotto","sequence":"additional","affiliation":[{"name":"University of Twente, Enschede, Netherlands"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Aiko","family":"Pras","sequence":"additional","affiliation":[{"name":"University of Twente, Enschede, Netherlands"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2014,11,5]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2000.839316"},{"key":"e_1_3_2_1_2_1","volume-title":"USA","author":"Anstee D.","year":"2014"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"crossref","unstructured":"P. Mockapetris. RFC 1035 - Domain Names - Implementation and Specification 1987.   P. Mockapetris. RFC 1035 - Domain Names - Implementation and Specification 1987.","DOI":"10.17487\/rfc1035"},{"key":"e_1_3_2_1_4_1","volume-title":"Black Hat USA","author":"Kaminsky D.","year":"2008"},{"key":"e_1_3_2_1_5_1","first-page":"28","volume-title":"5th Annual Symposium on Information Assurance (ASIA10)","author":"Cowperthwaite A.","year":"2010"},{"key":"e_1_3_2_1_6_1","volume-title":"27th Chaos Communication Congress (27C3)","author":"Bernstein D.J.","year":"2010"},{"key":"e_1_3_2_1_7_1","volume-title":"Reducing the Impact of Amplification DDoS Attacks. In Proc. of the 23rd USENIX Security Symposium","author":"K\u00fchrer M.","year":"2014"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"crossref","unstructured":"J. Damas M. Graff and P. Vixie. RFC 6891 - Extension Mechanisms for DNS (EDNS(0)) 2013.  J. Damas M. Graff and P. Vixie. RFC 6891 - Extension Mechanisms for DNS (EDNS(0)) 2013.","DOI":"10.17487\/rfc6891"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/1879141.1879173"},{"key":"e_1_3_2_1_10_1","unstructured":"R. Vaughn and G. Evron. DNS Amplification Attacks (preliminary release). 2006.  R. Vaughn and G. Evron. DNS Amplification Attacks (preliminary release). 2006."},{"key":"e_1_3_2_1_11_1","volume-title":"Characterizing and Mitigating The DDoS-as-a-Service Phenomenon. In 8th International Conference on Autonomous Infrastructure, Management and Security (AIMS), LNCS","author":"Santanna J.J.","year":"2014"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"crossref","unstructured":"O. Kolkman and R. Gieben. RFC 4641 - DNSSEC Operational Practices 2006.  O. Kolkman and R. Gieben. RFC 4641 - DNSSEC Operational Practices 2006.","DOI":"10.17487\/rfc4641"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"crossref","unstructured":"R. Arends R. Austein M. Larson D. Massey and S. Rose. RFC 4034 - Resource Records for the DNS Security Extensions 2005.  R. Arends R. Austein M. Larson D. Massey and S. Rose. RFC 4034 - Resource Records for the DNS Security Extensions 2005.","DOI":"10.17487\/rfc4034"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"crossref","unstructured":"O. Kolkman W. Mekking and R. Gieben. RFC 6781 - DNSSEC Operational Practices Version 2 2012.  O. Kolkman W. Mekking and R. Gieben. RFC 6781 - DNSSEC Operational Practices Version 2 2012.","DOI":"10.17487\/rfc6781"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"crossref","unstructured":"P. Ferguson and D. Senie. BCP 38 - Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address Spoofing 2000.  P. Ferguson and D. Senie. BCP 38 - Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address Spoofing 2000.","DOI":"10.17487\/rfc2827"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"crossref","unstructured":"D. Eastlake. Domain Name System (DNS) Cookies (Internet Draft) 2014.  D. Eastlake. Domain Name System (DNS) Cookies (Internet Draft) 2014.","DOI":"10.17487\/rfc6895"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/MCOM.2014.6828880"},{"key":"e_1_3_2_1_18_1","volume-title":"IEEE Security & Privacy","author":"Geva M.","year":"2013"},{"issue":"4","key":"e_1_3_2_1_19_1","first-page":"2069","article-title":"A Survey of Defense Mechanisms Against Distributed Denial of Service (DDoS) Flooding Attacks","volume":"15","author":"Zargar S.T.","year":"2046","journal-title":"IEEE Communications Surveys & Tutorials"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1109\/MNET.2013.6423188"},{"key":"e_1_3_2_1_21_1","volume-title":"Amplification Hell: Revisiting Network Protocols for DDoS Abuse. In Proceedings of the 2014 Network and Distributed Systems Security Symposium (NDSS 2014","author":"Rossow C.","year":"2014"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2013.10.001"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"crossref","unstructured":"P. Hoffman and W.C.A. Wijngaards. RFC 6605 - Elliptic Curve Digital Signature Algorithm (DSA) for DNSSEC 2012.  P. Hoffman and W.C.A. Wijngaards. RFC 6605 - Elliptic Curve Digital Signature Algorithm (DSA) for DNSSEC 2012.","DOI":"10.17487\/rfc6605"}],"event":{"name":"IMC '14: Internet Measurement Conference","location":"Vancouver BC Canada","acronym":"IMC '14","sponsor":["SIGMETRICS ACM Special Interest Group on Measurement and Evaluation","SIGCOMM ACM Special Interest Group on Data Communication","USENIX Assoc USENIX Assoc"]},"container-title":["Proceedings of the 2014 Conference on Internet Measurement Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2663716.2663731","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2663716.2663731","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T06:56:18Z","timestamp":1750229778000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2663716.2663731"}},"subtitle":["a comprehensive measurement study"],"short-title":[],"issued":{"date-parts":[[2014,11,5]]},"references-count":23,"alternative-id":["10.1145\/2663716.2663731","10.1145\/2663716"],"URL":"https:\/\/doi.org\/10.1145\/2663716.2663731","relation":{},"subject":[],"published":{"date-parts":[[2014,11,5]]},"assertion":[{"value":"2014-11-05","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}