{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,5]],"date-time":"2026-06-05T04:46:57Z","timestamp":1780634817869,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":57,"publisher":"ACM","license":[{"start":{"date-parts":[[2020,10,30]],"date-time":"2020-10-30T00:00:00Z","timestamp":1604016000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2020,10,30]]},"DOI":"10.1145\/3372297.3417280","type":"proceedings-article","created":{"date-parts":[[2020,11,2]],"date-time":"2020-11-02T18:27:02Z","timestamp":1604341622000},"page":"1337-1350","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":60,"title":["DNS Cache Poisoning Attack Reloaded"],"prefix":"10.1145","author":[{"given":"Keyu","family":"Man","sequence":"first","affiliation":[{"name":"University of California, Riverside, Riverside, CA, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Zhiyun","family":"Qian","sequence":"additional","affiliation":[{"name":"University of California, Riverside, Riverside, CA, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Zhongjie","family":"Wang","sequence":"additional","affiliation":[{"name":"University of California, Riverside, Riverside, CA, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Xiaofeng","family":"Zheng","sequence":"additional","affiliation":[{"name":"Qi-AnXin Group & Tsinghua University, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Youjun","family":"Huang","sequence":"additional","affiliation":[{"name":"Tsinghua University, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Haixin","family":"Duan","sequence":"additional","affiliation":[{"name":"Tsinghua University & Qi-AnXin Group, Beijing, China"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2020,11,2]]},"reference":[{"key":"e_1_3_2_2_1_1","unstructured":"D. Eastlake 3rd and M. Andrews. 2017. RFC 7873 Domain Name System (DNS) Cookies. https:\/\/tools.ietf.org\/html\/rfc7873 .  D. Eastlake 3rd and M. Andrews. 2017. RFC 7873 Domain Name System (DNS) Cookies. https:\/\/tools.ietf.org\/html\/rfc7873 ."},{"key":"e_1_3_2_2_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3363192"},{"key":"e_1_3_2_2_3_1","volume-title":"2015 IEEE Conference on Computer Communications (INFOCOM) .","author":"Alexander G.","unstructured":"G. Alexander and J. R. Crandall . 2015. Off-path round trip time measurement via TCP\/IP side channels . In 2015 IEEE Conference on Computer Communications (INFOCOM) . G. Alexander and J. R. Crandall. 2015. Off-path round trip time measurement via TCP\/IP side channels. In 2015 IEEE Conference on Computer Communications (INFOCOM) ."},{"key":"e_1_3_2_2_4_1","volume-title":"Crandall","author":"Alexander Geoffrey","year":"2019","unstructured":"Geoffrey Alexander , Antonio M. Espinoza , and Jedidiah R . Crandall . 2019 . Detecting TCP\/IP Connections via IPID Hash Collisions. In PoPETS . Geoffrey Alexander, Antonio M. Espinoza, and Jedidiah R. Crandall. 2019. Detecting TCP\/IP Connections via IPID Hash Collisions. In PoPETS ."},{"key":"e_1_3_2_2_5_1","volume-title":"Collaborative Client-Side DNS Cache Poisoning Attack. In IEEE INFOCOM 2019-IEEE Conference on Computer Communications. IEEE, 1153--1161","author":"Alharbi Fatemah","year":"2019","unstructured":"Fatemah Alharbi , Jie Chang , Yuchen Zhou , Feng Qian , Zhiyun Qian , and Nael Abu-Ghazaleh . 2019 . Collaborative Client-Side DNS Cache Poisoning Attack. In IEEE INFOCOM 2019-IEEE Conference on Computer Communications. IEEE, 1153--1161 . Fatemah Alharbi, Jie Chang, Yuchen Zhou, Feng Qian, Zhiyun Qian, and Nael Abu-Ghazaleh. 2019. Collaborative Client-Side DNS Cache Poisoning Attack. In IEEE INFOCOM 2019-IEEE Conference on Computer Communications. IEEE, 1153--1161."},{"key":"e_1_3_2_2_6_1","doi-asserted-by":"crossref","unstructured":"D. Atkins and R. Austein. 2004. RFC 3833: Threat Analysis of the Domain Name System (DNS). Technical Report. https:\/\/tools.ietf.org\/html\/rfc3833  D. Atkins and R. Austein. 2004. RFC 3833: Threat Analysis of the Domain Name System (DNS). Technical Report. https:\/\/tools.ietf.org\/html\/rfc3833","DOI":"10.17487\/rfc3833"},{"key":"e_1_3_2_2_8_1","unstructured":"Adib Behjat. 2011. DNS Forwarders. https:\/\/www.isc.org\/blogs\/dns-forwarders\/.  Adib Behjat. 2011. DNS Forwarders. https:\/\/www.isc.org\/blogs\/dns-forwarders\/."},{"key":"e_1_3_2_2_9_1","unstructured":"Markus Brandt Tianxiang Dai Amit Klein Haya Shulman and Michael Waidner. 2018. Domain validation  Markus Brandt Tianxiang Dai Amit Klein Haya Shulman and Michael Waidner. 2018. Domain validation"},{"key":"e_1_3_2_2_10_1","volume-title":"MitM-resilient PKI. In Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security. ACM","unstructured":"for MitM-resilient PKI. In Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security. ACM , 2060--2076. for MitM-resilient PKI. In Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security. ACM, 2060--2076."},{"key":"e_1_3_2_2_11_1","doi-asserted-by":"crossref","unstructured":"R. Bush and R. Austein. 2017. RFC 8210: The Resource Public Key Infrastructure (RPKI) to Router Protocol Version 1. Technical Report. https:\/\/tools.ietf.org\/html\/rfc8210  R. Bush and R. Austein. 2017. RFC 8210: The Resource Public Key Infrastructure (RPKI) to Router Protocol Version 1. Technical Report. https:\/\/tools.ietf.org\/html\/rfc8210","DOI":"10.17487\/RFC8210"},{"key":"e_1_3_2_2_12_1","volume-title":"Proceedings of the 25th USENIX Conference on Security Symposium","author":"Cao Yue","unstructured":"Yue Cao , Zhiyun Qian , Zhongjie Wang , Tuan Dao , Srikanth V. Krishnamurthy , and Lisa M. Marvel . 2016. Off-Path TCP Exploits: Global Rate Limit Considered Dangerous . In Proceedings of the 25th USENIX Conference on Security Symposium ( Austin, TX, USA) (SEC'16). USENIX Association, USA, 209--225. Yue Cao, Zhiyun Qian, Zhongjie Wang, Tuan Dao, Srikanth V. Krishnamurthy, and Lisa M. Marvel. 2016. Off-Path TCP Exploits: Global Rate Limit Considered Dangerous. In Proceedings of the 25th USENIX Conference on Security Symposium (Austin, TX, USA) (SEC'16). USENIX Association, USA, 209--225."},{"key":"e_1_3_2_2_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3354250"},{"key":"e_1_3_2_2_14_1","volume-title":"End-to-End View of the DNSSEC Ecosystem. In 26th USENIX Security Symposium (USENIX Security 17)","author":"Chung Taejoong","year":"2017","unstructured":"Taejoong Chung , Roland van Rijswijk-Deij , Balakrishnan Chandrasekaran , David Choffnes , Dave Levin , Bruce M. Maggs , Alan Mislove , and Christo Wilson . 2017 . A Longitudinal , End-to-End View of the DNSSEC Ecosystem. In 26th USENIX Security Symposium (USENIX Security 17) . USENIX Association, Vancouver, BC, 1307--1322. https:\/\/www.usenix.org\/conference\/usenixsecurity17\/technical-sessions\/presentation\/chung Taejoong Chung, Roland van Rijswijk-Deij, Balakrishnan Chandrasekaran, David Choffnes, Dave Levin, Bruce M. Maggs, Alan Mislove, and Christo Wilson. 2017. A Longitudinal, End-to-End View of the DNSSEC Ecosystem. In 26th USENIX Security Symposium (USENIX Security 17). USENIX Association, Vancouver, BC, 1307--1322. https:\/\/www.usenix.org\/conference\/usenixsecurity17\/technical-sessions\/presentation\/chung"},{"key":"e_1_3_2_2_15_1","unstructured":"CloudFlare. [n.d.]. Shield Your DNS Infrastructure From DDoS Attacks With Cloudflare's DNS Firewall. https:\/\/www.cloudflare.com\/dns\/dns-firewall\/.  CloudFlare. [n.d.]. Shield Your DNS Infrastructure From DDoS Attacks With Cloudflare's DNS Firewall. https:\/\/www.cloudflare.com\/dns\/dns-firewall\/."},{"key":"e_1_3_2_2_16_1","unstructured":"European Commision. 2014. Quality of Broadband Services in the EU. http:\/\/ec.europa.eu\/newsroom\/dae\/document.cfm?action=display&doc_id=10816 .  European Commision. 2014. Quality of Broadband Services in the EU. http:\/\/ec.europa.eu\/newsroom\/dae\/document.cfm?action=display&doc_id=10816 ."},{"key":"e_1_3_2_2_17_1","unstructured":"Cloudflare community. 2018a. Case randomization recently disabled? https:\/\/community.cloudflare.com\/t\/case-randomization-recently-disabled\/61376 .  Cloudflare community. 2018a. Case randomization recently disabled? https:\/\/community.cloudflare.com\/t\/case-randomization-recently-disabled\/61376 ."},{"key":"e_1_3_2_2_18_1","unstructured":"Cloudflare community. 2018b. Incorrect resolution for my domain. https:\/\/community.cloudflare.com\/t\/incorrect-resolution-for-my-domain\/17966 .  Cloudflare community. 2018b. Incorrect resolution for my domain. https:\/\/community.cloudflare.com\/t\/incorrect-resolution-for-my-domain\/17966 ."},{"key":"e_1_3_2_2_19_1","unstructured":"Internet Systems Consortium. 2020. BIND 9. https:\/\/www.isc.org\/bind\/.  Internet Systems Consortium. 2020. BIND 9. https:\/\/www.isc.org\/bind\/."},{"key":"e_1_3_2_2_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455798"},{"key":"e_1_3_2_2_21_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICCNC.2019.8685601"},{"key":"e_1_3_2_2_22_1","volume-title":"Introduction: DNS security threats and mitigations. https:\/\/developers.google.com\/speed\/public-dns\/docs\/security .","author":"Google Public","year":"2019","unstructured":"Google Public DNS. 2019 . Introduction: DNS security threats and mitigations. https:\/\/developers.google.com\/speed\/public-dns\/docs\/security . Google Public DNS. 2019. Introduction: DNS security threats and mitigations. https:\/\/developers.google.com\/speed\/public-dns\/docs\/security ."},{"key":"e_1_3_2_2_23_1","unstructured":"Eric Dumazet. 2014. icmp: add a global rate limitation. https:\/\/github.com\/torvalds\/linux\/commit\/4cdf507d54525842dfd9f6313fdafba039084046 .  Eric Dumazet. 2014. icmp: add a global rate limitation. https:\/\/github.com\/torvalds\/linux\/commit\/4cdf507d54525842dfd9f6313fdafba039084046 ."},{"key":"e_1_3_2_2_24_1","volume-title":"22nd ACM Conference on Computer and Communications Security .","author":"Durumeric Zakir","unstructured":"Zakir Durumeric , David Adrian , Ariana Mirian , Michael Bailey , and J. Alex Halderman . 2015. A Search Engine Backed by Internet-Wide Scanning . In 22nd ACM Conference on Computer and Communications Security . Zakir Durumeric, David Adrian, Ariana Mirian, Michael Bailey, and J. Alex Halderman. 2015. A Search Engine Backed by Internet-Wide Scanning. In 22nd ACM Conference on Computer and Communications Security ."},{"key":"e_1_3_2_2_25_1","doi-asserted-by":"crossref","unstructured":"L. Eggert G. Fairhurst and G. Shepherd. 2017. RFC 8085: UDP Usage Guidelines. Technical Report. https:\/\/tools.ietf.org\/html\/rfc8085  L. Eggert G. Fairhurst and G. Shepherd. 2017. RFC 8085: UDP Usage Guidelines. Technical Report. https:\/\/tools.ietf.org\/html\/rfc8085","DOI":"10.17487\/RFC8085"},{"key":"e_1_3_2_2_26_1","doi-asserted-by":"crossref","unstructured":"R Elz and R Bush. 1997. RFC 2181: Clarifications to the DNS specification. https:\/\/tools.ietf.org\/html\/rfc2181 .  R Elz and R Bush. 1997. RFC 2181: Clarifications to the DNS specification. https:\/\/tools.ietf.org\/html\/rfc2181 .","DOI":"10.17487\/rfc2181"},{"key":"e_1_3_2_2_27_1","volume-title":"Proceedings of the 19th USENIX Conference on Security","author":"Ensafi Roya","unstructured":"Roya Ensafi , Jong Chun Park , Deepak Kapur , and Jedidiah R. Crandall . 2010. Idle Port Scanning and Non-Interference Analysis of Network Protocol Stacks Using Model Checking . In Proceedings of the 19th USENIX Conference on Security ( Washington, DC) (USENIX Security'10). USENIX Association, USA, 17. Roya Ensafi, Jong Chun Park, Deepak Kapur, and Jedidiah R. Crandall. 2010. Idle Port Scanning and Non-Interference Analysis of Network Protocol Stacks Using Model Checking. In Proceedings of the 19th USENIX Conference on Security (Washington, DC) (USENIX Security'10). USENIX Association, USA, 17."},{"key":"e_1_3_2_2_28_1","unstructured":"FCC. 2018. Eighth Measuring Broadband America Fixed Broadband Report. https:\/\/www.fcc.gov\/reports-research\/reports\/measuring-broadband-america\/measuring-fixed-broadband-eighth-report .  FCC. 2018. Eighth Measuring Broadband America Fixed Broadband Report. https:\/\/www.fcc.gov\/reports-research\/reports\/measuring-broadband-america\/measuring-fixed-broadband-eighth-report ."},{"key":"e_1_3_2_2_29_1","unstructured":"Suzanne Goldlust Cathy Almond and Mark Andrews. 2017. DNS Cookies in BIND 9. https:\/\/kb.isc.org\/docs\/aa-01387 .  Suzanne Goldlust Cathy Almond and Mark Andrews. 2017. DNS Cookies in BIND 9. https:\/\/kb.isc.org\/docs\/aa-01387 ."},{"key":"e_1_3_2_2_30_1","volume-title":"International Conference on Security and Privacy in Communication Systems. Springer, 319--336","author":"Herzberg Amir","year":"2011","unstructured":"Amir Herzberg and Haya Shulman . 2011 . Unilateral antidotes to DNS poisoning . In International Conference on Security and Privacy in Communication Systems. Springer, 319--336 . Amir Herzberg and Haya Shulman. 2011. Unilateral antidotes to DNS poisoning. In International Conference on Security and Privacy in Communication Systems. Springer, 319--336."},{"key":"e_1_3_2_2_31_1","volume-title":"Security of Patched DNS. In ESORICS 2012 , , Sara Foresti, Moti Yung, and Fabio Martinelli (Eds.).","author":"Herzberg Amir","year":"2012","unstructured":"Amir Herzberg and Haya Shulman . 2012 . Security of Patched DNS. In ESORICS 2012 , , Sara Foresti, Moti Yung, and Fabio Martinelli (Eds.). Amir Herzberg and Haya Shulman. 2012. Security of Patched DNS. In ESORICS 2012 , , Sara Foresti, Moti Yung, and Fabio Martinelli (Eds.)."},{"key":"e_1_3_2_2_32_1","doi-asserted-by":"publisher","DOI":"10.1109\/CNS.2013.6682711"},{"key":"e_1_3_2_2_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/2523649.2523662"},{"key":"e_1_3_2_2_34_1","doi-asserted-by":"crossref","unstructured":"R. Hinden and S. Deering. 2006. IP Version 6 Addressing Architecture. Technical Report. https:\/\/tools.ietf.org\/html\/rfc4291  R. Hinden and S. Deering. 2006. IP Version 6 Addressing Architecture. Technical Report. https:\/\/tools.ietf.org\/html\/rfc4291","DOI":"10.17487\/rfc4291"},{"key":"e_1_3_2_2_35_1","doi-asserted-by":"crossref","unstructured":"P. Hoffman A. Sullivan and K. Fujiwara. 2019. RFC 8499: DNS Terminology. Technical Report. https:\/\/tools.ietf.org\/html\/rfc8499  P. Hoffman A. Sullivan and K. Fujiwara. 2019. RFC 8499: DNS Terminology. Technical Report. https:\/\/tools.ietf.org\/html\/rfc8499","DOI":"10.17487\/RFC8499"},{"key":"e_1_3_2_2_37_1","unstructured":"Geoff Huston. 2019. The state of DNSSEC validation. https:\/\/blog.apnic.net\/2019\/03\/14\/the-state-of-dnssec-validation\/.  Geoff Huston. 2019. The state of DNSSEC validation. https:\/\/blog.apnic.net\/2019\/03\/14\/the-state-of-dnssec-validation\/."},{"key":"e_1_3_2_2_39_1","doi-asserted-by":"publisher","DOI":"10.1109\/TNET.2011.2130537"},{"key":"e_1_3_2_2_40_1","volume-title":"Black ops 2008: It's the end of the cache as we know it. Black Hat USA","author":"Kaminsky Dan","year":"2008","unstructured":"Dan Kaminsky . 2008. Black ops 2008: It's the end of the cache as we know it. Black Hat USA ( 2008 ). Dan Kaminsky. 2008. Black ops 2008: It's the end of the cache as we know it. Black Hat USA (2008)."},{"key":"e_1_3_2_2_41_1","unstructured":"Simon Kelley. 2020. Dnsmasq - network services for small networks. http:\/\/www.thekelleys.org.uk\/dnsmasq\/doc.html .  Simon Kelley. 2020. Dnsmasq - network services for small networks. http:\/\/www.thekelleys.org.uk\/dnsmasq\/doc.html ."},{"key":"e_1_3_2_2_42_1","doi-asserted-by":"publisher","DOI":"10.1109\/INFOCOM.2017.8057202"},{"key":"e_1_3_2_2_43_1","volume-title":"Counting Packets Sent Between Arbitrary Internet Hosts. In 4th USENIX Workshop on Free and Open Communications on the Internet (FOCI 14)","author":"Knockel Jeffrey","unstructured":"Jeffrey Knockel and Jedidiah R. Crandall . 2014 . Counting Packets Sent Between Arbitrary Internet Hosts. In 4th USENIX Workshop on Free and Open Communications on the Internet (FOCI 14) . USENIX Association, San Diego, CA. https:\/\/www.usenix.org\/conference\/foci14\/workshop-program\/presentation\/knockel Jeffrey Knockel and Jedidiah R. Crandall. 2014. Counting Packets Sent Between Arbitrary Internet Hosts. In 4th USENIX Workshop on Free and Open Communications on the Internet (FOCI 14). USENIX Association, San Diego, CA. https:\/\/www.usenix.org\/conference\/foci14\/workshop-program\/presentation\/knockel"},{"key":"e_1_3_2_2_44_1","unstructured":"NLnet Labs. 2020. Unbound DNS Resolver. https:\/\/nlnetlabs.nl\/projects\/unbound\/about\/.  NLnet Labs. 2020. Unbound DNS Resolver. https:\/\/nlnetlabs.nl\/projects\/unbound\/about\/."},{"key":"e_1_3_2_2_45_1","unstructured":"Cricket Liu. 2015. A new kind of DDoS threat: The 'Nonsense Name' attack. https:\/\/www.networkworld.com\/article\/2875970\/a-new-kind-of-ddos-threat-the-nonsense-name-attack.html .  Cricket Liu. 2015. A new kind of DDoS threat: The 'Nonsense Name' attack. https:\/\/www.networkworld.com\/article\/2875970\/a-new-kind-of-ddos-threat-the-nonsense-name-attack.html ."},{"key":"e_1_3_2_2_46_1","unstructured":"lkm. 2007. Blind TCP\/IP Hijacking is Still Alive. http:\/\/phrack.org\/issues\/64\/13.html .  lkm. 2007. Blind TCP\/IP Hijacking is Still Alive. http:\/\/phrack.org\/issues\/64\/13.html ."},{"key":"e_1_3_2_2_47_1","doi-asserted-by":"publisher","DOI":"10.1145\/3355369.3355580"},{"key":"e_1_3_2_2_48_1","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3354232"},{"key":"e_1_3_2_2_50_1","doi-asserted-by":"publisher","DOI":"10.1145\/3131365.3131366"},{"key":"e_1_3_2_2_51_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.29"},{"key":"e_1_3_2_2_52_1","doi-asserted-by":"crossref","unstructured":"Alan Quach Zhongjie Wang and Zhiyun Qian. 2017. Investigation of the 2016 Linux TCP Stack Vulnerability at Scale. SIGMETRICS Perform. Eval. Rev. (2017).  Alan Quach Zhongjie Wang and Zhiyun Qian. 2017. Investigation of the 2016 Linux TCP Stack Vulnerability at Scale. SIGMETRICS Perform. Eval. Rev. (2017).","DOI":"10.1145\/3078505.3078510"},{"key":"e_1_3_2_2_53_1","unstructured":"Vicky Ris Suzanne Goldlust and Alan Clegg. 2020. BIND Best Practices - Authoritative. https:\/\/kb.isc.org\/docs\/bind-best-practices-authoritative .  Vicky Ris Suzanne Goldlust and Alan Clegg. 2020. BIND Best Practices - Authoritative. https:\/\/kb.isc.org\/docs\/bind-best-practices-authoritative ."},{"key":"e_1_3_2_2_54_1","doi-asserted-by":"crossref","unstructured":"Paul Schmitt Anne Edmundson Allison Mankin and Nick Feamster. 2019. Oblivious DNS: Practical Privacy for DNS Queries. In PoPETS .  Paul Schmitt Anne Edmundson Allison Mankin and Nick Feamster. 2019. Oblivious DNS: Practical Privacy for DNS Queries. In PoPETS .","DOI":"10.1145\/3340301.3341128"},{"key":"e_1_3_2_2_55_1","doi-asserted-by":"publisher","DOI":"10.1145\/2504730.2504734"},{"key":"e_1_3_2_2_56_1","unstructured":"Kyle Schomp Tom Callahan Michael Rabinovich and Mark Allman. 2014. DNS Record Injectino Vulnerabilities in Home Routers. http:\/\/www.icir.org\/mallman\/talks\/schomp-dns-security-nanog61.pdf . Nanog 61.  Kyle Schomp Tom Callahan Michael Rabinovich and Mark Allman. 2014. DNS Record Injectino Vulnerabilities in Home Routers. http:\/\/www.icir.org\/mallman\/talks\/schomp-dns-security-nanog61.pdf . Nanog 61."},{"key":"e_1_3_2_2_57_1","unstructured":"Sergio De Simone. [n.d.]. The Status of HTTP\/3. https:\/\/www.infoq.com\/news\/2020\/01\/http-3-status\/\/.  Sergio De Simone. [n.d.]. The Status of HTTP\/3. https:\/\/www.infoq.com\/news\/2020\/01\/http-3-status\/\/."},{"key":"e_1_3_2_2_58_1","unstructured":"US-Cert. 2019. Alert (TA13-088A) - DNS Amplification Attacks. https:\/\/www.us-cert.gov\/ncas\/alerts\/TA13-088A .  US-Cert. 2019. Alert (TA13-088A) - DNS Amplification Attacks. https:\/\/www.us-cert.gov\/ncas\/alerts\/TA13-088A ."},{"key":"e_1_3_2_2_59_1","unstructured":"Paul Vixie. 2019. On the Time Value of Security Features in DNS. http:\/\/www.circleid.com\/posts\/20130913_on_the_time_value_of_security_features_in_dns\/.  Paul Vixie. 2019. On the Time Value of Security Features in DNS. http:\/\/www.circleid.com\/posts\/20130913_on_the_time_value_of_security_features_in_dns\/."},{"key":"e_1_3_2_2_60_1","unstructured":"Paul Vixie and Vernon Schryver. 2012. DNS Response Rate Limiting (DNS RRL). https:\/\/ftp.isc.org\/isc\/pubs\/tn\/isc-tn-2012--1.txt .  Paul Vixie and Vernon Schryver. 2012. DNS Response Rate Limiting (DNS RRL). https:\/\/ftp.isc.org\/isc\/pubs\/tn\/isc-tn-2012--1.txt ."},{"key":"e_1_3_2_2_61_1","volume-title":"Poison Over Troubled Forwarders: A Cache Poisoning Attack Targeting DNS Forwarding Devices. In 29th USENIX Security Symposium (USENIX Security 20)","author":"Zheng Xiaofeng","year":"2020","unstructured":"Xiaofeng Zheng , Chaoyi Lu , Jian Peng , Qiushi Yang , Dongjie Zhou , Baojun Liu , Keyu Man , Shuang Hao , Haixin Duan , and Zhiyun Qian . 2020 . Poison Over Troubled Forwarders: A Cache Poisoning Attack Targeting DNS Forwarding Devices. In 29th USENIX Security Symposium (USENIX Security 20) . USENIX Association, 577--593. https:\/\/www.usenix.org\/conference\/usenixsecurity20\/presentation\/zheng Xiaofeng Zheng, Chaoyi Lu, Jian Peng, Qiushi Yang, Dongjie Zhou, Baojun Liu, Keyu Man, Shuang Hao, Haixin Duan, and Zhiyun Qian. 2020. Poison Over Troubled Forwarders: A Cache Poisoning Attack Targeting DNS Forwarding Devices. In 29th USENIX Security Symposium (USENIX Security 20) . USENIX Association, 577--593. https:\/\/www.usenix.org\/conference\/usenixsecurity20\/presentation\/zheng"}],"event":{"name":"CCS '20: 2020 ACM SIGSAC Conference on Computer and Communications Security","location":"Virtual Event USA","acronym":"CCS '20","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3372297.3417280","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3372297.3417280","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T22:01:31Z","timestamp":1750197691000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3372297.3417280"}},"subtitle":["Revolutions with Side Channels"],"short-title":[],"issued":{"date-parts":[[2020,10,30]]},"references-count":57,"alternative-id":["10.1145\/3372297.3417280","10.1145\/3372297"],"URL":"https:\/\/doi.org\/10.1145\/3372297.3417280","relation":{},"subject":[],"published":{"date-parts":[[2020,10,30]]},"assertion":[{"value":"2020-11-02","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}