research-article

Authority server selection in DNS caching resolvers

Authors:

Lixia ZhangAuthors Info & Claims

ACM SIGCOMM Computer Communication Review, Volume 42, Issue 2

Pages 80 - 86

https://doi.org/10.1145/2185376.2185387

Published: 29 March 2012 Publication History

Abstract

Operators of high-profile DNS zones utilize multiple authority servers for performance and robustness. We conducted a series of trace-driven measurements to understand how current caching resolver implementations distribute queries among a set of authority servers. Our results reveal areas for improvement in the ``apparently sound'' server selection schemes used by some popular implementations. In some cases, the selection schemes lead to sub-optimal behavior of caching resolvers, e.g. sending a significant amount of queries to unresponsive servers. We believe that most of these issues are caused by careless implementations, such as keeping decreasing a server's SRTT after the server has been selected, treating unresponsive servers as responsive ones, and using constant SRTT decaying factor. For the problems identified in this work, we recommended corresponding solutions.

References

[1]

PowerDNS. http://www.powerdns.com.

[2]

BIND. http://www.isc.org/software/bind.

[3]

DNS Surveys. http://dns.measurement-factory.com/surveys/.

[4]

B. Ager, W. Mühlbauer, G. Smaragdakis, and S. Uhlig. Comparing DNS resolvers in the wild. In ACM IMC, 2010.

Digital Library

[5]

R. Carter and M. Crovella. Server selection using dynamic path characterization in wide-area networks. In IEEE INFOCOM, 1997.

Digital Library

[6]

S. Deb, A. Srinivasan, and S. Pavan. An improved DNS server selection algorithm for faster lookups. In IEEE COMSWARE, 2008.

[7]

S. Dykes, K. Robbins, and C. Jeffery. An empirical evaluation of client-side server selection algorithms. In IEEE INFOCOM, 2000.

[8]

S. Friedl. An illustrated guide to the kaminsky dns vulnerability. Uinxwiz. net Tech Tips, August, 2008.

[9]

K. Hanna, N. Natarajan, and B. Levine. Evaluation of a novel two-step server selection metric. In IEEE ICNP, 2001.

[10]

J. Jung, E. Sit, H. Balakrishnan, and R. Morris. DNS performance and the effectiveness of caching. Networking, IEEE/ACM Transactions on, 10(5):589{603, 2002.

Digital Library

[11]

B. Krishnamurthy, C. Wills, and Y. Zhang. On the use and performance of content distribution networks. In ACM SIGCOMM Workshop on Internet Measurement, 2001.

Digital Library

[12]

R. Krishnan, H. Madhyastha, S. Srinivasan, S. Jain, A. Krishnamurthy, T. Anderson, and J. Gao. Moving beyond end-to-end path information to optimize CDN performance. In ACM IMC, 2009.

Digital Library

[13]

P. Mockapetris. Domain Names - Concepts and Facilities. RFC 1034 (Standard), Nov. 1987.

Digital Library

[14]

P. Mockapetris. Domain Names - Implementation and Specification. RFC 1035 (Standard), Nov. 1987.

Digital Library

[15]

I. Poese, B. Frank, B. Ager, G. Smaragdakis, and A. Feldmann. Improving content delivery using provider-aided distance information. In ACM IMC, 2010.

Digital Library

[16]

M. Sayal, Y. Breitbart, P. Scheuermann, and R. Vingralek. Selection algorithms for replicated web servers. ACM SIGMETRICS Performance Evaluation Review, 26(3):44--50, 1998.

Digital Library

[17]

A. Shaikh, R. Tewari, and M. Agrawal. On the effectiveness of DNS-based server selection. In IEEE INFOCOM, 2001.

[18]

P. Vixie. What DNS is not. Communications of the ACM, 52(12):53--47, 2009.

Digital Library

[19]

E. Zegura, M. Ammar, Z. Fei, and S. Bhattacharjee. Application-layer anycasting: A server selection architecture and use in a replicated web service. Networking, IEEE/ACM Transactions on, 8(4):455--466, 2000.

Digital Library

Cited By

Zhang FLiu BLu CXing YDuan HLiu YChang L(2024)Investigating Deployment Issues of DNS Root Server Instances From a China-Wide ViewIEEE Transactions on Dependable and Secure Computing10.1109/TDSC.2024.337353021:6(5275-5292)Online publication date: 1-Nov-2024
https://dl.acm.org/doi/10.1109/TDSC.2024.3373530
Zhang FLiu BAlowaisheq EChen JLu CSong LMa YLiu YDuan HYang MMeng WJensen CCremers CKirda E(2023)Silence is not Golden: Disrupting the Load Balancing of Authoritative DNS ServersProceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security10.1145/3576915.3616647(296-310)Online publication date: 15-Nov-2023
https://dl.acm.org/doi/10.1145/3576915.3616647
Li CCheng YZhang ZYu P(2023)Configuration anormaly detection and resolution risk assessment of authoritative domain name serverComputers & Security10.1016/j.cose.2023.103426135(103426)Online publication date: Dec-2023
https://doi.org/10.1016/j.cose.2023.103426
Show More Cited By

Index Terms

Authority server selection in DNS caching resolvers

Recommendations

Comparing DNS resolvers in the wild
IMC '10: Proceedings of the 10th ACM SIGCOMM conference on Internet measurement

The Domain Name System (DNS) is a fundamental building block of the Internet. Today, the performance of more and more applications depend not only on the responsiveness of DNS, but also the exact answer returned by the queried DNS resolver, e.g., for ...
A study of the impact of DNS resolvers on CDN performance using a causal approach

Resources such as Web pages or videos that are published in the Internet are referred to by their Uniform Resource Locator (URL). If a user accesses a resource via its URL, the host name part of the URL needs to be translated into a routable IP address. ...
RFC 6731: Improved Recursive DNS Server Selection for Multi-Interfaced Nodes

Comments

Information & Contributors

Information

Published In

cover image ACM SIGCOMM Computer Communication Review

ACM SIGCOMM Computer Communication Review Volume 42, Issue 2

April 2012

108 pages

ISSN:0146-4833

DOI:10.1145/2185376

Issue’s Table of Contents

Copyright © 2012 Authors.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 29 March 2012

Published in SIGCOMM-CCR Volume 42, Issue 2

Check for updates

Author Tags

Qualifiers

Research-article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

42
Total Citations
View Citations
331
Total Downloads

Downloads (Last 12 months)6
Downloads (Last 6 weeks)1

Reflects downloads up to 07 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

Zhang FLiu BLu CXing YDuan HLiu YChang L(2024)Investigating Deployment Issues of DNS Root Server Instances From a China-Wide ViewIEEE Transactions on Dependable and Secure Computing10.1109/TDSC.2024.337353021:6(5275-5292)Online publication date: 1-Nov-2024
https://dl.acm.org/doi/10.1109/TDSC.2024.3373530
Zhang FLiu BAlowaisheq EChen JLu CSong LMa YLiu YDuan HYang MMeng WJensen CCremers CKirda E(2023)Silence is not Golden: Disrupting the Load Balancing of Authoritative DNS ServersProceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security10.1145/3576915.3616647(296-310)Online publication date: 15-Nov-2023
https://dl.acm.org/doi/10.1145/3576915.3616647
Li CCheng YZhang ZYu P(2023)Configuration anormaly detection and resolution risk assessment of authoritative domain name serverComputers & Security10.1016/j.cose.2023.103426135(103426)Online publication date: Dec-2023
https://doi.org/10.1016/j.cose.2023.103426
Bartoli A(2023)Network architecture and ROA protection of government mail domains: A case studyComputer Communications10.1016/j.comcom.2023.02.004201(143-161)Online publication date: Mar-2023
https://doi.org/10.1016/j.comcom.2023.02.004
van der Toorn OMüller MDickinson SHesselman CSperotto Avan Rijswijk-Deij R(2022)Addressing the challenges of modern DNS a comprehensive tutorialComputer Science Review10.1016/j.cosrev.2022.10046945(100469)Online publication date: Aug-2022
https://doi.org/10.1016/j.cosrev.2022.100469
Moura GHeidemann JHardaker WCharnsethikul PBulten JCeron JHesselman C(2022)Old but Gold: Prospecting TCP to Engineer and Live Monitor DNS AnycastPassive and Active Measurement10.1007/978-3-030-98785-5_12(264-292)Online publication date: 28-Mar-2022
https://dl.acm.org/doi/10.1007/978-3-030-98785-5_12
Zhang FLu CLiu BDuan HLiu Y(2022)Measuring the Practical Effect of DNS Root Server Instances: A China-Wide Case StudyPassive and Active Measurement10.1007/978-3-030-98785-5_11(247-263)Online publication date: 28-Mar-2022
https://dl.acm.org/doi/10.1007/978-3-030-98785-5_11
Dai TShulman HWaidner MKim YKim JVigna GShi E(2021)Let's Downgrade Let's EncryptProceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security10.1145/3460120.3484815(1421-1440)Online publication date: 12-Nov-2021
https://dl.acm.org/doi/10.1145/3460120.3484815
Khormali APark JAlasmary HAnwar ASaad MMohaisen D(2021)Domain name system security and privacy: A contemporary surveyComputer Networks10.1016/j.comnet.2020.107699185(107699)Online publication date: Feb-2021
https://doi.org/10.1016/j.comnet.2020.107699
Schomp KBhardwaj OKurdoglu EMuhaimen MSitaraman R(2020)Akamai DNSProceedings of the Annual conference of the ACM Special Interest Group on Data Communication on the applications, technologies, architectures, and protocols for computer communication10.1145/3387514.3405881(465-478)Online publication date: 30-Jul-2020
https://dl.acm.org/doi/10.1145/3387514.3405881
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Issue’s Table of Contents