University of Wollongong
Browse

On the viability and performance of DNS tunneling

Download (367.31 kB)
conference contribution
posted on 2024-11-13, 14:36 authored by Tom van Leijenhorst, Kwan-Wu ChinKwan-Wu Chin, Darryn Lowe
DNS tunnels are network covert channels that allow the transmission of arbitrary data using the DNS infrastructure. Users can use such tunnels to hide their communication sessions in order to bypass local security and accounting policies. Hence, it is important that we investigate the viability and performance of DNS tunneling. Our results show that clients can obtain up to 110 KB/s in throughput, and delays as low as 150ms. These results, however, incur very high overheads. In the worst case, clients generate up to 2000% more traffic!

History

Citation

T. van Leijenhorst, K. Chin & D. Lowe, "On the viability and performance of DNS tunneling," in International Conference on Information Technology and Applications, 2008, pp. 560-566.

Pagination

560-566

Language

English

RIS ID

24103

Usage metrics

    Categories

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC