Assessing DNS Vulnerability to Record Injection
作者: Kyle Schomp , Tom Callahan , Michael Rabinovich , Mark Allman
DOI: 10.1007/978-3-319-04918-2_21
关键词:
摘要: The Domain Name System (DNS) is a critical component of the Internet infrastructure as it maps human-readable names to IP addresses. Injecting fraudulent mappings allows an attacker divert users from intended destinations those attacker's choosing. In this paper, we measure Internet's vulnerability DNS record injection attacksincluding new attack uncover. We find that vulnerabilities are fairly commoneven years after some them were first uncovered.
springer.com
icir.org 参考文章(11)
David A. Maltz, Cheng Huang, Keith W. Ross, Jin Li, Chao Zhang, Inflight modifications of content: who are the culprits? usenix conference on large scale exploits and emergent threats. pp. 8- 8 ,(2011)
David Dagon, Chris Lee, Wenke Lee, Niels Provos, Corrupted DNS Resolution Paths: The Rise of a Malicious Resolution Authority network and distributed system security symposium. ,(2008)
Roy Arends, Scott Rose, Dan Massey, Matt Larson, Rob Austein, DNS Security Introduction and Requirements RFC. ,vol. 4033, pp. 1- 21 ,(2005)
Kyle Schomp, Tom Callahan, Michael Rabinovich, Mark Allman, On measuring the client-side DNS infrastructure internet measurement conference. pp. 77- 90 ,(2013) , 10.1145/2504730.2504734
Christian Kreibich, Nicholas Weaver, Boris Nechaev, Vern Paxson, Netalyzr: illuminating the edge network internet measurement conference. pp. 246- 259 ,(2010) , 10.1145/1879141.1879173
David Dagon, Manos Antonakakis, Paul Vixie, Tatuya Jinmei, Wenke Lee, Increased DNS forgery resistance through 0x20-bit encoding Proceedings of the 15th ACM conference on Computer and communications security - CCS '08. pp. 211- 222 ,(2008) , 10.1145/1455770.1455798
P. V. Mockapetris, Domain names - implementation and specification Domain names - implementation and specification. ,vol. 1035, pp. 1- 55 ,(1987)
Brent Chun, David Culler, Timothy Roscoe, Andy Bavier, Larry Peterson, Mike Wawrzoniak, Mic Bowman, PlanetLab ACM SIGCOMM Computer Communication Review. ,vol. 33, pp. 3- 12 ,(2003) , 10.1145/956993.956995
Derek Leonard, Dmitri Loguinov, Demystifying service discovery: implementing an internet-wide scanner internet measurement conference. pp. 109- 122 ,(2010) , 10.1145/1879141.1879156
Vern Paxson, Christian Kreibich, Nicholas Weaver, Redirecting {DNS} for Ads and Profit foundations of computational intelligence. ,(2011)