Title :
Addressing Complexity in DNS Security: A Case for Improved Security Status Indication Based on a Trust Model
Author :
Rivis, Mark ; Asimakopoulou, Eleana ; Sotiriadis, Stelios ; Bessis, Nik
Author_Institution :
Sch. of Comput. & Math., Univ. of Derby, Derby, UK
Abstract :
The Domain Name System (DNS) is a hierarchical distributed naming system for Internet resources, but in some instances the protocol´s insecurity threatens its proper functionality. To overcome this, the use of DNS Security Extensions (DNSSEC) has been proposed, and a partial deployment exists today. For the case of mobile devices that are connected to the Internet, there is possible use of different DNS servers at each location, with infrastructure warranting different degrees of trust for disaster management. In this work we propose the development of a trust model for DNS for cases of trust management. In particular we focus on different name resolution scenarios and protocols. Finally we propose a new user interface showing DNS security status, so that users can become aware of potentially compromised web sites.
Keywords :
Internet; Web sites; computer network security; mobile computing; protocols; trusted computing; user interfaces; DNS security complexity; DNS security extension; DNS servers; DNSSEC; Internet resources; Web sites; disaster management; domain name system; hierarchical distributed naming system; improved security status indication; mobile devices; name resolution protocol; name resolution scenario; protocol insecurity; trust management; trust model; user interface; Browsers; Conferences; Internet; Security; Servers; Software; Web pages; Domain Name System Security Extensions; Domain Name System vulnerabilities; Security user interface; Trust model;
Conference_Titel :
P2P, Parallel, Grid, Cloud and Internet Computing (3PGCIC), 2013 Eighth International Conference on
Conference_Location :
Compiegne
DOI :
10.1109/3PGCIC.2013.78
