May be of interest to some of the more technically savvy users here.
Full disclosure: Uses data from Comcasts recursive servers and our Tech R&D Fund provided some partial funding of the work.
See http://www.nctatechnicalpapers.com/Paper/2014/2014-disposable-domains
By Yizheng Chen, Manos Antonakakis, Wenke Lee
In recent years DNS has been increasingly leveraged to build and scale highly reliable network infrastructures. In this paper, we will introduce and analyze a new class of domains, which we refer to as disposable domains. Disposable domains appear to be heavily employed by common Internet services (i.e., Search Engines, Social Networks, Online Trackers etc.), and they seem to be automatically generated. They are characterized by a one-time use pattern, and appear to be used as a way of signaling via DNS. While this is yet another creative use of the DNS to enable new Internet applications and efcient scaling of services, little do we know about the size and DNS caching properties of this family of domains.
To shed light on the pervasiveness and growth of disposable domains, we present a study of their characteristics based on live DNS trafc observed at Comcast, in a city that serves millions of end users. We found that disposable domains increased from 23.1% to 27.6% in all queried domain names, and from 27.6% to 37.2% among all resolved domain names daily, and more than 60% of all distinct resource records observed daily in modern DNS trafc are related to disposable domains. We discuss the possible negative implications that disposable domains may have on the DNS caching infrastructure, resolvers validating DNSSEC transactions, and passive DNS data collection systems.
--
JL
Comcast
↧