publication . Article . 2014

DNSSEC for cyber forensics

Haya Shulman; Michael Waidner;
Open Access English
  • Published: 01 Jan 2014
  • Country: Germany
Abstract
Domain Name System (DNS) cache poisoning is a stepping stone towards advanced (cyber) attacks. DNS cache poisoning can be used to monitor users’ activities for censorship, to distribute malware and spam and to subvert correctness and availability of Internet clients and services. Currently, the DNS infrastructure relies on challenge-response defences against attacks by (the common) off-path adversaries. Such defences do not suffice against stronger, man-in-the-middle (MitM), adversaries. However, MitM is not believed to be common; hence, there seems to be little motivation to adopt systematic, cryptographic mechanisms. We show that challenge-response do not prot...
Persistent Identifiers
Subjects
free text keywords: DNS cache poisoning, domain hijacking, cyber attacks, cyber security, Malware, computer.software_genre, computer, Man-in-the-middle attack, Computer security, Cryptography, business.industry, business, Computer science, DNS spoofing, Domain Name System, DNS hijacking, The Internet, Domain Name System Security Extensions
Related Organizations
Any information missing or wrong?Report an Issue