TY - GEN
T1 - Antidotes for DNS poisoning by off-path adversaries
AU - Herzberg, Amir
AU - Shulman, Haya
PY - 2012
Y1 - 2012
N2 - Following to Kaminsky's attack (2008), cachingresolvers were patched with defenses against poisoning. So far, the main improvements were non-cryptographic and easy todeploy (requiring changes only in resolvers). Some of theseimprovements are widely deployed, and it is believed thatthey suffice to prevent poisoning, at least by off-path, spoofingattackers. We perform a critical study of the prominent defensemechanisms against poisoning attacks by off-path adversaries. We present weaknesses and limitations, and suggest counter-measures. Our main message is that the DNS infrastructure shouldnot rely on short term, 'easy-to-deploy' defenses, and effortsshould be increased towards transition to DNSSEC.
AB - Following to Kaminsky's attack (2008), cachingresolvers were patched with defenses against poisoning. So far, the main improvements were non-cryptographic and easy todeploy (requiring changes only in resolvers). Some of theseimprovements are widely deployed, and it is believed thatthey suffice to prevent poisoning, at least by off-path, spoofingattackers. We perform a critical study of the prominent defensemechanisms against poisoning attacks by off-path adversaries. We present weaknesses and limitations, and suggest counter-measures. Our main message is that the DNS infrastructure shouldnot rely on short term, 'easy-to-deploy' defenses, and effortsshould be increased towards transition to DNSSEC.
KW - DNS cache poisoning
KW - DNS security
KW - Kaminsky attack
UR - http://www.scopus.com/inward/record.url?scp=84869470040&partnerID=8YFLogxK
U2 - 10.1109/ares.2012.27
DO - 10.1109/ares.2012.27
M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???
AN - SCOPUS:84869470040
SN - 9780769547756
T3 - Proceedings - 2012 7th International Conference on Availability, Reliability and Security, ARES 2012
SP - 262
EP - 267
BT - Proceedings - 2012 7th International Conference on Availability, Reliability and Security, ARES 2012
T2 - 2012 7th International Conference on Availability, Reliability and Security, ARES 2012
Y2 - 20 August 2012 through 24 August 2012
ER -