Assessing DNS Vulnerability to Record Injection

TitleAssessing DNS Vulnerability to Record Injection
Publication TypeConference Paper
Year of Publication2014
AuthorsSchomp, K., Callahan T., Rabinovich M., & Allman M.
Other Numbers3671
Abstract

The Domain Name System (DNS) is a critical component of the Internet infrastructure as it maps human-readable names to IP addresses. Injecting fraudulent mappings allows an attacker to divert users from intended destinations to those of an attacker's choosing. In this paper, we measure the Internet's vulnerability to DNS record injection attacks---including a new attack we uncover. We find that record injection vulnerabilities are fairly common---even years after some of them were first uncovered.

Acknowledgment

This work was partially supported by funding provided to ICSI through National Science Foundation grants NeTS : 1213157 ("User-Centric Network Measurement") and TWC : 1237265 ("Beyond Technical Security: Developing an Empirical Basis for Socio-Economic Perspectives"). Additional funding was provided through National Science Foundation grant NeTS : 0831821 ("Relationship-Oriented Networking"). Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors or originators and do not necessarily reflect the views of the National Science Foundation.

URLhttps://www.icsi.berkeley.edu/pubs/networking/assessingDNS14.pdf
Bibliographic Notes

Proceedings of the 15th Passive and Active Measurement Conference (PAM 2011), Los Angeles, California

Abbreviated Authors

K. Schomp, T. Callahan, M. Rabinovich, and M. Allman

ICSI Research Group

Networking and Security

ICSI Publication Type

Article in conference proceedings