Security vulnerabilities in DNS and DNSSEC

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Suranjith Ariyapperuma Articles by Chris J. Mitchell

The Second International Conference on Availability, Reliability and Security (ARES'07)

Vienna, Austria

April 10-April 13

ISBN: 0-7695-2775-2

	ASCII Text	x
	Suranjith Ariyapperuma, Chris J. Mitchell, "Security vulnerabilities in DNS and DNSSEC," Availability, Reliability and Security, International Conference on, pp. 335-342, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007.

	BibTex	x
	@article{ 10.1109/ARES.2007.139, author = {Suranjith Ariyapperuma and Chris J. Mitchell}, title = {Security vulnerabilities in DNS and DNSSEC}, journal ={Availability, Reliability and Security, International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2775-2}, pages = {335-342}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2007.139}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Availability, Reliability and Security, International Conference on TI - Security vulnerabilities in DNS and DNSSEC SN - 0-7695-2775-2 SP335 EP342 A1 - Suranjith Ariyapperuma, A1 - Chris J. Mitchell, PY - 2007 KW - null VL - 0 JA - Availability, Reliability and Security, International Conference on ER -

Suranjith Ariyapperuma, University of London

Chris J. Mitchell, University of London

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ARES.2007.139

We present an analysis of security vulnerabilities in the Domain Name System (DNS) and the DNS Security Extensions (DNSSEC). DNS data that is provided by name servers lacks support for data origin authentication and data integrity. This makes DNS vulnerable to man in the middle (MITM) attacks, as well as a range of other attacks. To make DNS more robust, DNSSEC was proposed by the Internet Engineering Task Force (IETF). DNSSEC provides data origin authentication and integrity by using digital signatures. Although DNSSEC provides security for DNS data, it suffers from serious security and operational flaws. We discuss the DNS and DNSSEC architectures, and consider the associated security vulnerabilities.

Citation:

Suranjith Ariyapperuma, Chris J. Mitchell, "Security vulnerabilities in DNS and DNSSEC," ares, pp.335-342, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.