Free Online Productivity Tools
i2Speak
i2Symbol
i2OCR
iTex2Img
iWeb2Print
iWeb2Shot
i2Type
iPdf2Split
iPdf2Merge
i2Bopomofo
i2Arabic
i2Style
i2Image
i2PDF
iLatex2Rtf
Sci2ools
NETWORK
2008
2008
Minimizing information leakage in the DNS
The Domain Name System (DNS) is the global lookup service for network resources. To protect DNS information, the DNS Security Extensions (DNSSEC) have been developed and deployed on branches of the DNS to provide authentication and integrity protection using digital signatures. However, signed DNS nodes have been found to have an unfortunate side effect: an attacker can query them as reconnaissance before attacking individual hosts on a particular network. There are different ways a zone administrator can minimize information unwanted leakage while still taking advantage of DNSSEC for integrity and source authentication. This paper describes the risk and examines the protocol and operational options and looks at their advantages and drawbacks.
Real-time Traffic| Added | 14 Dec 2010 |
| Updated | 14 Dec 2010 |
| Type | Journal |
| Year | 2008 |
| Where | NETWORK |
| Authors | Scott Rose, Anastase Nakassis |
Comments (0)
Researcher Info
|
