Assessing DNS Vulnerability to Record Injection
Title | Assessing DNS Vulnerability to Record Injection |
Publication Type | Conference Paper |
Year of Publication | 2014 |
Authors | Schomp, K., Callahan T., Rabinovich M., & Allman M. |
Other Numbers | 3671 |
Abstract | The Domain Name System (DNS) is a critical component of the Internet infrastructure as it maps human-readable names to IP addresses. Injecting fraudulent mappings allows an attacker to divert users from intended destinations to those of an attacker's choosing. In this paper, we measure the Internet's vulnerability to DNS record injection attacks---including a new attack we uncover. We find that record injection vulnerabilities are fairly common---even years after some of them were first uncovered. |
Acknowledgment | This work was partially supported by funding provided to ICSI through National Science Foundation grants NeTS : 1213157 ("User-Centric Network Measurement") and TWC : 1237265 ("Beyond Technical Security: Developing an Empirical Basis for Socio-Economic Perspectives"). Additional funding was provided through National Science Foundation grant NeTS : 0831821 ("Relationship-Oriented Networking"). Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors or originators and do not necessarily reflect the views of the National Science Foundation. |
URL | https://www.icsi.berkeley.edu/pubs/networking/assessingDNS14.pdf |
Bibliographic Notes | Proceedings of the 15th Passive and Active Measurement Conference (PAM 2011), Los Angeles, California |
Abbreviated Authors | K. Schomp, T. Callahan, M. Rabinovich, and M. Allman |
ICSI Research Group | Networking and Security |
ICSI Publication Type | Article in conference proceedings |