Investigating the Agility Bias in DNS Graph Mining

Ruohonen, Jukka; Leppänen, Ville

doi:10.1109/cit.2017.55

Cited by 7 publications

(7 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…By using a common undirected and bipartite DNS graph representation [31], there are two types of vertices: the domains sampled from the Alexa's list and the domains the sampled domains have authorized via the issue or the issuewild tags. Whenever a given "Alexa-domain" has authorized a "CA-domain", an edge is placed between these two types of domain vertices.…”

Section: Resultsmentioning

confidence: 99%

An empirical survey on the early adoption of DNS certification authority authorization

Ruohonen

2019

Journal of Cyber Security Technology

Self Cite

View full text Add to dashboard Cite

A new certification authority authorization (CAA) resource record for the domain name system (DNS) was standardized in 2013. Motivated by the later 2017 decision to enforce mandatory CAA checking for most certificate authorities, this paper surveys the early adoption of CAA by using an empirical sample collected from the Alexa's top-million domains. According to the results, (i) the adoption of CAA is still at a modest level; only a little below two percent of the popular domains sampled have adopted CAA. Among the domains that have adopted CAA, (ii) authorizations dealing with wildcard certificates are rare compared to conventional certificates. Interestingly, (iii) the results only partially reflect the market structure of the global certificate business. With these timely results, the paper contributes to the ongoing large-scale empirical research on the use of encryption technologies.

show abstract

Section: Resultsmentioning

confidence: 99%

An empirical survey on the early adoption of DNS certification authority authorization

Ruohonen

2019

Journal of Cyber Security Technology

Self Cite

View full text Add to dashboard Cite

show abstract

“…The structure is again undirected, unweighted, and bipartite: The network G s is a social network in the traditional sense; even though participants are linked to each other through abstract identifiers, the participants are still human beings. The network G d , in contrast, resembles more the so-called domain name system graphs within which domain names are connected to each other via Internet protocol (IP) addresses or by other technical relations [94,103]. Consequently, it would be possible to manipulate G d by resolving the addresses of the domain names or by considering only the second-level domain names [96].…”

Section: Bipartite Email and Infrastructure Networkmentioning

confidence: 99%

A case study on software vulnerability coordination

Ruohonen

Rauti

Hyrynsalmi

et al. 2018

Information and Software Technology

Self Cite

View full text Add to dashboard Cite

Context: Coordination is a fundamental tenet of software engineering. Coordination is required also for identifying discovered and disclosed software vulnerabilities with Common Vulnerabilities and Exposures (CVEs). Motivated by recent practical challenges, this paper examines the coordination of CVEs for open source projects through a public mailing list. Objective: The paper observes the historical time delays between the assignment of CVEs on a mailing list and the later appearance of these in the National Vulnerability Database (NVD). Drawing from research on software engineering coordination, software vulnerabilities, and bug tracking, the delays are modeled through three dimensions: social networks and communication practices, tracking infrastructures, and the technical characteristics of the CVEs coordinated. Method : Given a period between 2008 and 2016, a sample of over five thousand CVEs is used to model the delays with nearly fifty explanatory metrics. Regression analysis is used for the modeling. Results: The results show that the CVE coordination delays are affected by different abstractions for noise and prerequisite constraints. These abstractions convey effects from the social network and infrastructure dimensions. Particularly strong effect sizes are observed for annual and monthly control metrics, a control metric for weekends, the degrees of the nodes in the CVE coordination networks, and the number of references given in NVD for the CVEs archived. Smaller but visible effects are present for metrics measuring the entropy of the emails exchanged, traces to bug tracking systems, and other related aspects. The empirical signals are weaker for the technical characteristics. Conclusion: Software vulnerability and CVE coordination exhibit all typical traits of software engineering coordination in general. The coordination perspective elaborated and the case studied open new avenues for further empirical inquiries as well as practical improvements for the contemporary CVE coordination.

show abstract

“…V is the vertex set of G, and E is the edge set. The vertices are said to be adjacent to each other if they are interconnected through an edge [39,40]. The example of nodes and edges is shown in Figure 4 using six-bus test system (shown previously in Figure 1).…”

Section: Graph Theorymentioning

confidence: 99%

“…(1) Arranging the From-To position: The edge that represents the line-data E (From-To) is sorted out to ensure that From < To in each element of line data. (2) Determining the number of descendants (NoD) of each node: The NoD of each node is determined based on the DFS order using Equation (40).…”

mentioning

confidence: 99%

Graph theory-based radial load flow analysis to solve the dynamic network reconfiguration problem

Aman

Jasmon

Bakar

et al. 2015

Int. Trans. Electr. Energ. Syst.

View full text Add to dashboard Cite

Summary Radial load flow (RLF) methods are frequently used in solving distribution system problems. The conventional Jacobian‐based load flow methods (e.g., Newton–Raphson) may fail to converge in solving distribution system due to high resistance to reactance ratio of distribution lines. RLF methods are based on sweep‐based mechanism and require that the line data must be arranged in accordance with network topology. This problem needs special attention particularly in case of solving dynamic power system problems, where topology of the network changes with tie switches position (network reconfiguration problem). This paper has presented an intelligent graph theory‐based RLF analysis to solve “dynamic” problems. The proposed algorithm will help in arranging line data for any combination of tie switch positions, to check the radiality of the system and to ensure that all nodes are connected with the source node. The effectiveness of the proposed method is also validated by solving 16‐bus and 33‐bus network reconfiguration problem using graph theory‐based RLF method. Copyright © 2015 John Wiley & Sons, Ltd.

show abstract

Investigating the Agility Bias in DNS Graph Mining

Cited by 7 publications

References 27 publications

An empirical survey on the early adoption of DNS certification authority authorization

An empirical survey on the early adoption of DNS certification authority authorization

A case study on software vulnerability coordination

Graph theory-based radial load flow analysis to solve the dynamic network reconfiguration problem

Contact Info

Product

Resources

About