- Impact
- 23,705
Characterization of Anycast Adoption in the DNS Authoritative Infrastructure
Raffaele Sommese, Gautam Akiwate, Mattijs Jonker, Giovane C. M. Moura, Marco Davids, Roland van Rijswijk-Deij, Geoffrey M. Voelker, Stefan Savage, K.C. Claffy, Anna Sperotto
Network Traffic Measurement and Analysis Conference (TMA'21)
Abstract
Read more (PDF)
Raffaele Sommese, Gautam Akiwate, Mattijs Jonker, Giovane C. M. Moura, Marco Davids, Roland van Rijswijk-Deij, Geoffrey M. Voelker, Stefan Savage, K.C. Claffy, Anna Sperotto
Network Traffic Measurement and Analysis Conference (TMA'21)
Abstract
Anycast has proven to be an effective mechanism to enhance resilience in the DNS ecosystem and for scaling DNS nameserver capacity, both in authoritative and the recursive resolver infrastructure. Since its adoption for root servers, anycast has mitigated the impact of failures and DDoS attacks on the DNS ecosystem.
In this work, we quantify the adoption of anycast to support authoritative domain name service for top-level and second-level domains (TLDs and SLDs). Comparing two comprehensive anycast census datasets in 2017 and 2021, with DNS measurements captured over the same period, reveals that anycast adoption is increasing, driven by a few large operators.
While anycast offers compelling resilience advantage, it also shifts some resilience risk to other aspects of the infrastructure. We discuss these aspects, and how the pervasive use of anycast merits a re-evaluation of how to measure DNS resilience.
This work was supported in part by: the NWO-DHS MADDVIPR project (628.001.031/FA8750-19-2-0004); National Science Foundation grants CNS-1764055, CNS-1903612, OAC-1724853, CNS-1901517, CNS-1705050, and CNS-1629973; DARPA Coop. Agg. HR00112020014; and the EU H2020 CONCORDIA project (830927).
Read more (PDF)
Last edited: