Security and Privacy in Communication Networks. 7th International ICST Conference, SecureComm 2011, London, UK, September 7-9, 2011, Revised Selected Papers

Research Article

Unilateral Antidotes to DNS Poisoning

Download
284 downloads
  • @INPROCEEDINGS{10.1007/978-3-642-31909-9_18,
        author={Amir Herzberg and Haya Shulman},
        title={Unilateral Antidotes to DNS Poisoning},
        proceedings={Security and Privacy in Communication Networks. 7th International ICST Conference, SecureComm 2011, London, UK, September 7-9, 2011, Revised Selected Papers},
        proceedings_a={SECURECOMM},
        year={2012},
        month={10},
        keywords={secure dns dns poisoning network security},
        doi={10.1007/978-3-642-31909-9_18}
    }
    
  • Amir Herzberg
    Haya Shulman
    Year: 2012
    Unilateral Antidotes to DNS Poisoning
    SECURECOMM
    Springer
    DOI: 10.1007/978-3-642-31909-9_18
Amir Herzberg1,*, Haya Shulman1,*
  • 1: Bar Ilan University
*Contact email: amir.herzberg@gmail.com, haya.shulman@gmail.com

Abstract

We investigate defenses against DNS cache poisoning focusing on mechanisms that can be readily deployed unilaterally by the resolving organisation, preferably in a single gateway or a proxy. DNS poisoning is (still) a major threat to Internet security; determined spoofing attackers are often able to circumvent currently deployed antidotes such as port randomisation. The adoption of DNSSEC, which would foil DNS poisoning, remains a long-term challenge.