Projects per year
Abstract
This paper illuminates the problem of non-secure DNS dynamic updates, which allow a miscreant to manipulate DNS entries in the zone files of authoritative name servers. We refer to this type of attack as to zone poisoning. This paper presents the first measurement study of the vulnerability. We analyze a random sample of 2.9 million domains and the Alexa top 1 million domains and find that at least 1,877 (0.065%) and 587 (0.062%) of domains are vulnerable, respectively. Among the vulnerable domains are governments, health care providers and banks, demonstrating that the threat impacts important services. Via this study and subsequent notifications to affected parties, we aim to improve the security of the DNS ecosystem.
Original language | English |
---|---|
Title of host publication | IMC 2016 - Proceedings of the 2016 ACM Internet Measurement Conference |
Publisher | Association for Computing Machinery (ACM) |
Pages | 271-278 |
Number of pages | 8 |
Volume | 14-16-November-2016 |
ISBN (Electronic) | 9781450345262 |
DOIs | |
Publication status | Published - 2016 |
Event | 2016 ACM Internet Measurement Conference, IMC 2016 - Santa Monica, United States Duration: 14 Nov 2016 → 16 Nov 2016 |
Conference
Conference | 2016 ACM Internet Measurement Conference, IMC 2016 |
---|---|
Country/Territory | United States |
City | Santa Monica |
Period | 14/11/16 → 16/11/16 |
Keywords
- Domain Name System
- Dynamic updates
- Measurement
- Security
- Zone poisoning
Fingerprint
Dive into the research topics of 'Zone poisoning: The how and where of non-secure DNS dynamic updates'. Together they form a unique fingerprint.Projects
- 1 Active
-
Cybersecurity (TPM)
van Eeten, M. J. G., Hernandez Ganan, C., Gürses, F. S., van Wegberg, R. S., Parkin, S. E., Zhauniarovich, Y., van Engelenburg, S. H., Kadenko, N. I., Labunets, K., Akyazi, U., Bouwman, X. B., Jansen, B. A., Kaur, M., Al Alsadi, A., Lone, Q. B., Turcios Rodriguez, E. R., Vermeer, M., van Harten, V. T. C., Vetrivel, S., Oomens, E. (. C. )., Kustosch, L. F., Bisogni, F., Ciere, M., Fiebig, T., Korczynski, M. T., Moreira Moura, G. C., Noroozian, A., Pieters, W., Tajalizadehkhoob, S., Dacier, B. H. A., San José Sanchez, J., Çetin, F. O. & Zannettou, S.
1/01/10 → …
Project: Research