A Comparative Performance Evaluation of DNS Tunneling Tools

  • Alessio Merlo
  • Gianluca Papaleo
  • Stefano Veneziano
  • Maurizio Aiello
Conference paper

DOI: 10.1007/978-3-642-21323-6_11

Part of the Lecture Notes in Computer Science book series (LNCS, volume 6694)
Cite this paper as:
Merlo A., Papaleo G., Veneziano S., Aiello M. (2011) A Comparative Performance Evaluation of DNS Tunneling Tools. In: Herrero Á., Corchado E. (eds) Computational Intelligence in Security for Information Systems. Lecture Notes in Computer Science, vol 6694. Springer, Berlin, Heidelberg

Abstract

DNS Tunnels are built through proper tools that allow embedding data on DNS queries and response. Each tool has its own approach to the building tunnels in DNS that differently affects the network performance. In this paper, we propose a brief architectural analysis of the current state-of-the-art of DNS Tunneling tools. Then, we propose the first comparative analysis of such tools in term of performance, as a first step towards the possibility to relate each tool with a proper behavior of DNS traffic. To this aim, we define an assessment of the tools in three different network configurations with three different performance metrics. We finally summarize the most interesting results and provide some considerations on the performance of each tool.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag Berlin Heidelberg 2011

Authors and Affiliations

  • Alessio Merlo
    • 1
    • 2
  • Gianluca Papaleo
    • 2
  • Stefano Veneziano
    • 2
  • Maurizio Aiello
    • 2
  1. 1.Dipartimento di Informatica, Sistemistica e Telematica (DIST)University of GenovaGenovaItaly
  2. 2.Istituto di Elettronica ed Ingeneria dell’Informazione e delle Telecomunicazioni (IEIIT-CNR)GenovaItaly

Personalised recommendations