Technical Analysis and Taxonomy of DNS Based Threats: Deconstructing the Domain Fraud

The Domain Name System (DNS) or popularly known as DNS is an emerging form of threat called the Domain Fraud which breaks the trust users put on DNS. DNS Spoofing, Homograph Attacks, Cyber Squatting, expired Domain Exploitation, Typo Squatting, Domain Kiting, Domain Shadowing and Sub Domain Hi-jacking are Domain fraud techniques explored in this paper via a comprehensive taxonomy methodology. Using Literature Insights, Technical Analysis this research paper tries to unravel the motivations, structures and strategies of mitigation of each DNS fraud type. By discussing the technical analysis and taxonomy of domain fraud involving DNS based threats this research paper suggests use of advanced analytical modelling using AI & ML, proactive DNS based security practices and harmonizing policies to fight its growth and its sophistication. Such taxonomy and technical analysis are seldom done due to volatile and dynamic nature of DNS based threats.