buttonTrust
 
Commands
  Search database
  Annual Summary 07-08:
        Full Summary

Quick search by ...
 
 
Year
  2008
2007
2006
2005
2004

Group
  aftrust
deab
eab
eduboard
education
euus
healthcare
hsn
idtheft
knowledgetransfer
languages
netdefenses
patientmonitor
policy
scada
sensornets
sensorprivacy
trust
trustfaculty
trustlocal
trustseminar
trustworthy
university
wise2006
Perils of Transitive Trust in the Domain Name System
Venugopalan Ramasubramanian and Emin Gun Sirer

Citation
Venugopalan Ramasubramanian and Emin Gun Sirer. "Perils of Transitive Trust in the Domain Name System". In Proceedings of Internet Measurement Conference (IMC), Berkeley, California, October, 2005.

Abstract
The Domain Name System, DNS, is based on nameserver delegations, which introduce complex and subtle dependencies between names and nameservers. In this paper, we present results from a large scale survey of DNS, and show that these dependencies lead to a highly insecure naming system. We report specically on three aspects of DNS security: the properties of the DNS trusted computing base, the extent and impact of existing vulnerabilities in the DNS infrastructure, and the ease with which attacks against DNS can be launched. The survey shows that a typical name depends on 46 servers on average, whose compromise can lead to domain hijacks, while names belonging to some countries depend on a few hundred servers. An attacker exploiting well-documented vulnerabilities in DNS nameservers can hijack more than 30% of the names appearing in the Yahoo and DMOZ.org directories. And certain nameservers, especially in educational institutions, control as much as 10% of the namespace.

Electronic downloads

Citation formats  

  • HTML 
    Venugopalan Ramasubramanian and Emin Gun Sirer. <a
href="http://www.truststc.org/pubs/42.html">Perils
of Transitive Trust in the Domain Name System</a>, In
Proceedings of Internet Measurement Conference (IMC),
Berkeley, California, October, 2005.
  • Plain text 
    Venugopalan Ramasubramanian and Emin Gun Sirer. "Perils of
Transitive Trust in the Domain Name System". In Proceedings
of Internet Measurement Conference (IMC), Berkeley,
California, October, 2005.
  • BibTeX 
    @inproceedings{RamasubramanianSirer2005,
    author = {Venugopalan Ramasubramanian and Emin Gun Sirer},
    title = {Perils of Transitive Trust in the Domain Name
              System},
    booktitle = {In Proceedings of Internet Measurement Conference
              (IMC), Berkeley, California},
    month = {October},
    year = {2005},
    URL = {http://www.truststc.org/pubs/42.html}
}

Posted by Bill Hogan on 4 Apr 2006.
For additional information, see the Publications FAQ or contact webmaster at www truststc org..

Notice: This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright.
You are not logged in
© 2005-2008 Trust