• DocumentCode
    19379
  • Title

    Retrofitting Security into Network Protocols: The Case of DNSSEC

  • Author

    Herzberg, Amir ; Shulman, Haya

  • Author_Institution
    Bar Ilan Univ., Bar-Ilan, Israel
  • Volume
    18
  • Issue
    1
  • fYear
    2014
  • fDate
    Jan.-Feb. 2014
  • Firstpage
    66
  • Lastpage
    71
  • Abstract
    DNS Security Extensions (DNSSEC) became standardized more than 15 years ago, but its adoption is still limited. The recent publication of several new, off-path DNS cache-poisoning and wide-scale man-in-the-middle attacks should motivate DNSSEC adoption. However, significant challenges and pitfalls have resulted in severely limited deployment, which is furthermore often incorrect (and hence vulnerable). The authors outline these problems and suggest directions for improvement and further research.
  • Keywords
    Internet; computer network security; cryptographic protocols; DNS security extensions; DNSSEC adoption; Internet security; domain name system; network protocols; off-path DNS cache-poisoning; retrofitting security; wide-scale man-in-the-middle attacks; Computer crime; Cryptography; Electronic mail; IP networks; Network security; DNS; DNS security; DNSSEC; cache-poisoning;
  • fLanguage
    English
  • Journal_Title
    Internet Computing, IEEE
  • Publisher
    ieee
  • ISSN
    1089-7801
  • Type

    jour

  • DOI
    10.1109/MIC.2014.14
  • Filename
    6756846
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=19379