The DSecO project is a data model for representing and reasoning on Domain Name System (DNS) data. The ontology is developed using web technologies (e.g. RDF, OWL, SKOS) and is intended as a structure for realizing a DNS Knowledge Graph (DNS-KG) for administration and security assessment applications. The model has been developed in collaboration with operational teams, and in connection with third parties linked vocabularies.
The content of this code repository accompanies the research project explained in the following paper:
@article{dseco-2025,
author = {{Didier Bringer} and {Lionel Tailhardat}},
title = {{DSecO: Domain Name System (DNS) Data as a Knowledge Graph for Enhanced Security Analysis}},
journal = {IEEE Transactions on Networking},
year = 2025,
doi = {10.1109/TON.2025.3598374},
}Overview of the data model:
Overview of the DNS-KG approach:
We provide a direct access to the DSecO resources with the dseco w3id.org identifier:
Based on this identifier, the following links apply for direct access to the DSecO featured topics:
| DSecO | Link |
|---|---|
| Ontology implementation | https://w3id.org/dseco/ontology/ |
| Documentation | https://w3id.org/dseco/doc/ |
| Evaluation | https://w3id.org/dseco/evaluation/ |
See also the Repository Structure for navigating into this repository:
dseco
├───docs <documentation, diagrams and figures>
├───evaluation <toy example and evaluation tool set>
├───lib <local storage of third party development tools>
├───ontology <the DSecO implementation>
└───tools <supplementary tools for DSecO>
Copyright (c) 2023-2025, Orange. All rights reserved.