skip to main content
10.1145/3355369.3355586acmconferencesArticle/Chapter ViewAbstractPublication PagesimcConference Proceedingsconference-collections
research-article

A Look at the ECS Behavior of DNS Resolvers

Published: 21 October 2019 Publication History

Abstract

Content delivery networks (CDNs) commonly use DNS to map end-users to the best edge servers. A recently proposed EDNS0-Client-Subnet (ECS) extension allows recursive resolvers to include end-user subnet information in DNS queries, so that authoritative DNS servers, especially those belonging to CDNs, could use this information to improve user mapping. In this paper, we study the ECS behavior of ECS-enabled recursive resolvers from the perspectives of the opposite sides of a DNS interaction, the authoritative DNS servers of a major CDN and a busy DNS resolution service. We find a range of erroneous (i.e., deviating from the protocol specification) and detrimental (even if compliant) behaviors that may unnecessarily erode client privacy, reduce the effectiveness of DNS caching, diminish ECS benefits, and in some cases turn ECS from facilitator into an obstacle to authoritative DNS servers' ability to optimize user-to-edge-server mappings.

References

[1]
Bernhard Ager, Wolfgang Mühlbauer, Georgios Smaragdakis, and Steve Uhlig. 2010. Comparing DNS resolvers in the wild. In Proceedings of the Internet Measurement Conference. ACM, 15--21.
[2]
Akamai 2019. Akamai Technologies, Inc. Retrieved 2019-09-07 from https://www.akamai.com/
[3]
Rami Al-Dalky, Michael Rabinovich, and Mark Allman. 2018. Practical challenge-response for DNS. ACM SIGCOMM Computer Communication Review 48, 3 (2018), 20--28.
[4]
Matt Calder, Xun Fan, Zi Hu, Ethan Katz-Bassett, John Heidemann, and Ramesh Govindan. 2013. Mapping the expansion of Google's serving infrastructure. In Proceedings of the Internet Measurement Conference. ACM, 313--326.
[5]
Matt Calder, Xun Fan, and Liang Zhu. 2019. A Cloud Provider's View of EDNS Client-Subnet Adoption. In Network Traffic Measurement and Analysis Conference (TMA). IEEE, 129--136.
[6]
Fangfei Chen, Ramesh K Sitaraman, and Marcelo Torres. 2015. End-User Mapping: Next Generation Request Routing for Content Delivery. ACM SIGCOMM Computer Communication Review 45, 4 (2015), 167--181.
[7]
CloudFront 2019. Amazon CloudFront. Retrieved 2019-09-07 from https://aws.amazon.com/cloudfront/
[8]
CNAME 2019. Introducing CNAME Flattening: RFC-Compliant CNAMEs at a Domain's Root. https://blog.cloudflare.com/introducing-cname-flattening-rfc-compliant-cnames-at-a-domains-root/
[9]
C. Contavalli, W. van der Gaast, D. Lawrence, and W. Kumari. 2016. Client Subnet in DNS Queries. RFC 7871. RFC Editor. https://tools.ietf.org/html/rfc7871
[10]
D. Dagon, N. Provos, C.P. Lee, and W. Lee. 2008. Corrupted DNS Resolution Paths: The Rise of a Malicious Resolution Authority. In Network and Distributed System Security Symposium.
[11]
J. Damas, M. Graff, and P. Vixie. 2013. Extension Mechanisms for DNS (EDNS(0)). RFC 6891. RFC Editor. https://tools.ietf.org/html/rfc6891
[12]
Wouter B De Vries, Roland van Rijswijk-Deij, Pieter-Tjerk de Boer, and Aiko Pras. 2018. Passive observations of a large DNS service: 2.5 years in the life of Google. In Network Traffic Measurement and Analysis Conference (TMA). IEEE, 1--8.
[13]
DITL 2018. A-Root DITL Data, submitted to DNS-OARC by Verisign. https://www.dns-oarc.net/oarc/data/ditl/2018.
[14]
ECS 2019. EDNS Client Subnet FAQ. Retrieved 2019-09-07 from https://support.opendns.com/hc/en-us/articles/227987647-EDNS-Client-Subnet-FAQ
[15]
EdgeScape 2019. Akamai EdgeScape. Retrieved 2019-09-07 from https://developer.akamai.com/edgescape
[16]
R. Elz and R. Bush. 1997. Clarifications To the DNS Specification. RFC 2181. https://tools.ietf.org/html/rfc2181
[17]
Fastly 2019. Fastly, Inc. Retrieved 2019-09-07 from https://www.fastly.com/
[18]
T. Finch, E. Hunt, P. van Dijk, and A. Eden. 2018. Address-specific DNS aliases (ANAME). https://tools.ietf.org/html/draft-ietf-dnsop-aname-02. https://tools.ietf.org/html/draft-ietf-dnsop-aname-02
[19]
Cheng Huang, David A Maltz, Jin Li, and Albert Greenberg. 2011. Public DNS system and global traffic management. In IEEE INFOCOM - The 30th Conference on Computer Communications. 2615--2623.
[20]
Ben Jones, Nick Feamster, Vern Paxson, Nicholas Weaver, and Mark Allman. 2016. Detecting DNS root manipulation. In International Conference on Passive and Active Network Measurement. Springer, 276--288.
[21]
Panagiotis Kintis, Yacin Nadji, David Dagon, Michael Farrell, and Manos Antonakakis. 2016. Understanding the Privacy Implications of ECS. In International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment. 343--353.
[22]
D. Leonard and D. Loguinov. 2008. Turbo King: Framework for Large-Scale Internet Delay Measurements. In IEEE INFOCOM - The 27th Conference on Computer Communications. 31--35.
[23]
J Ott, M Sanchez, J Rula, and F Bustamante. 2012. Content delivery and the natural evolution of DNS. In Proceedings of the Internet Measurement Conference. ACM, 523--536.
[24]
PDNS 2019. PowerDNS Recursor. Retrieved 2019-09-07 from https://www.powerdns.com/recursor.html
[25]
David Plonka and Arthur Berger. 2017. kIP: a Measured Approach to IPv6 Address Anonymization. arXiv preprint arXiv:1707.03900 (2017).
[26]
RIPE Atlas 2019. Welcome to RIPE Atlas. Retrieved 2019-09-07 from https://atlas.ripe.net/
[27]
Kyle Schomp, Tom Callahan, Michael Rabinovich, and Mark Allman. 2013. On Measuring the Client-Side DNS Infrastructure. In Proceedings of the Internet Measurement Conference. ACM, 77--90.
[28]
Shadow 2019. Open Resolver Scanning Project. Retrieved 2019-09-07 from https://dnsscan.shadowserver.org/
[29]
Philip Smith, Rob Evans, and Mike Hughes. 2006. RIPE routing working group recommendations on route aggregation. Document ripe-399, RIPE (2006).
[30]
Florian Streibelt, Jan Böttger, Nikolaos Chatzis, Georgios Smaragdakis, and Anja Feldmann. 2013. Exploring EDNS-Client-Subnet Adopters in your Free Time. In Proceedings of the Internet Measurement Conference. ACM, 305--312.

Cited By

View all
  • (2024)A First Look At IPv6 Hypergiant InfrastructureProceedings of the ACM on Networking10.1145/36563002:CoNEXT2(1-25)Online publication date: 13-Jun-2024
  • (2024)Swamp of Reflectors: Investigating the Ecosystem of Open DNS ResolversPassive and Active Measurement10.1007/978-3-031-56252-5_1(3-18)Online publication date: 11-Mar-2024
  • (2023)Poster: A Peek Backstage: Organizations in DNS Resolver HierarchiesProceedings of the ACM SIGCOMM 2023 Conference10.1145/3603269.3610870(1088-1090)Online publication date: 10-Sep-2023
  • Show More Cited By

Recommendations

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences
IMC '19: Proceedings of the Internet Measurement Conference
October 2019
497 pages
ISBN:9781450369480
DOI:10.1145/3355369
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 21 October 2019

Permissions

Request permissions for this article.

Check for updates

Qualifiers

  • Research-article
  • Research
  • Refereed limited

Conference

IMC '19
IMC '19: ACM Internet Measurement Conference
October 21 - 23, 2019
Amsterdam, Netherlands

Acceptance Rates

IMC '19 Paper Acceptance Rate 39 of 197 submissions, 20%;
Overall Acceptance Rate 277 of 1,083 submissions, 26%

Contributors

Other Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

  • Downloads (Last 12 months)64
  • Downloads (Last 6 weeks)4
Reflects downloads up to 25 Jan 2025

Other Metrics

Citations

Cited By

View all
  • (2024)A First Look At IPv6 Hypergiant InfrastructureProceedings of the ACM on Networking10.1145/36563002:CoNEXT2(1-25)Online publication date: 13-Jun-2024
  • (2024)Swamp of Reflectors: Investigating the Ecosystem of Open DNS ResolversPassive and Active Measurement10.1007/978-3-031-56252-5_1(3-18)Online publication date: 11-Mar-2024
  • (2023)Poster: A Peek Backstage: Organizations in DNS Resolver HierarchiesProceedings of the ACM SIGCOMM 2023 Conference10.1145/3603269.3610870(1088-1090)Online publication date: 10-Sep-2023
  • (2022)Towards a Behavioral and Privacy Analysis of ECS for IPv6 DNS Resolvers2022 18th International Conference on Network and Service Management (CNSM)10.23919/CNSM55787.2022.9965032(303-309)Online publication date: 31-Oct-2022
  • (2022)Dynamic Extend Domain Name Server Client Subnet IP Address Aggregation Solution Based On Dynamic Network Information2022 IEEE 8th International Conference on Cloud Computing and Intelligent Systems (CCIS)10.1109/CCIS57298.2022.10016311(61-65)Online publication date: 26-Nov-2022
  • (2022)ZMap performance in open DNS resolver discovery2022 2nd Asia-Pacific Conference on Communications Technology and Computer Science (ACCTCS)10.1109/ACCTCS53867.2022.00024(80-85)Online publication date: Feb-2022
  • (2022)A deep dive into DNS behavior and query failuresComputer Networks10.1016/j.comnet.2022.109131(109131)Online publication date: Jun-2022
  • (2022)Measurement for encrypted open resolversComputer Networks: The International Journal of Computer and Telecommunications Networking10.1016/j.comnet.2022.109081213:COnline publication date: 4-Aug-2022
  • (2022)Assessing Support for DNS-over-TCP in the WildPassive and Active Measurement10.1007/978-3-030-98785-5_22(487-517)Online publication date: 22-Mar-2022
  • (2021)Towards identifying networks with internet clients using public dataProceedings of the 21st ACM Internet Measurement Conference10.1145/3487552.3487844(753-762)Online publication date: 2-Nov-2021
  • Show More Cited By

View Options

Login options

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Figures

Tables

Media

Share

Share

Share this Publication link

Share on social media