Security and Privacy in Communication Networks. 6th Iternational ICST Conference, SecureComm 2010, Singapore, September 7-9, 2010. Proceedings

Research Article

The Hitchhiker’s Guide to DNS Cache Poisoning

Download196 downloads
  • @INPROCEEDINGS{10.1007/978-3-642-16161-2_27,
        author={Sooel Son and Vitaly Shmatikov},
        title={The Hitchhiker’s Guide to DNS Cache Poisoning},
        proceedings={Security and Privacy in Communication Networks. 6th Iternational ICST Conference, SecureComm 2010, Singapore, September 7-9, 2010. Proceedings},
        proceedings_a={SECURECOMM},
        year={2012},
        month={5},
        keywords={DNS cache poisoning formal model},
        doi={10.1007/978-3-642-16161-2_27}
    }
    
  • Sooel Son
    Vitaly Shmatikov
    Year: 2012
    The Hitchhiker’s Guide to DNS Cache Poisoning
    SECURECOMM
    Springer
    DOI: 10.1007/978-3-642-16161-2_27
Sooel Son1, Vitaly Shmatikov1
  • 1: The University of Texas

Abstract

DNS cache poisoning is a serious threat to today’s Internet. We develop a formal model of the semantics of DNS caches, including the bailiwick rule and trust-level logic, and use it to systematically investigate different types of cache poisoning and to generate templates for attack payloads. We explain the impact of the attacks on DNS resolvers such as BIND, MaraDNS, and Unbound and their implications for several defenses against DNS cache poisoning.