Presentation is loading. Please wait.

Presentation is loading. Please wait.

DNS Security Extension 1. Implication of Kaminsky Attack Dramatically reduces the complexity and increases the effectiveness of DNS cache poisoning –No.

Published byLeo Lester Modified over 8 years ago

Similar presentations

Presentation on theme: "DNS Security Extension 1. Implication of Kaminsky Attack Dramatically reduces the complexity and increases the effectiveness of DNS cache poisoning –No."— Presentation transcript:

1 DNS Security Extension 1

2 Implication of Kaminsky Attack Dramatically reduces the complexity and increases the effectiveness of DNS cache poisoning –No longer needs to wait for TTL to expire –The attacker can control when and what queries are issued –A complete domain may be hijacked Even TLD’s are vulnerable –Only needs 10 secs to succeed 2

3 Short-term mitigation Increase the brute-force search space –16 bits TXID is too small and can be easily brute-forced –Randomize source port number –Use other entropy in DNS messages e.g. Letter cases in URL 3

4 Long-term Solution: DNSSEC Use public-key signature to authenticate DNS messages –Domain names already form a hierarchy –Parent signs children’s public keys –Resolver only needs to know the root public key to authenticate DNS messages 4

5 5 Borrowed from slides of Prof. Dan Massey at Colorado State University l Basic Internet Database n Maps names to IP addresses n Also stores IPv6 addresses, mail servers, service locators, Enum (phone numbers), etc. l Data organized as tree structure. n Each zone is the authority for its local data. Root educomuk ciscousfcoibm cse The Domain Name System

6 6 Adapted from slides of Prof. Dan Massey at Colorado State University l Provides a “natural” PKI n Maps zones to their keys n Parent-zone sign child zones’ keys l Keys organized as tree structure. n Each zone is the authority for its local data. n A zone’s key is only effective for its zone Root educomuk ciscousfcoibm cse DNSSEC

7 DNS RR Review DNS Resource Record (RR) –Can be viewed as tuples of the form –types: A (IP address) MX (mail servers) NS (name servers) PTR (reverse look up) RRSIG (signature) DNSKEY(public key) … 7

8 Introduce a new data type: RRSIG name TTL class type value {www.usf.edu. 82310 IN A 131.247.182.171}www.usf.edu name TTL class type covered_type {www.usf.edu. 82310 IN RRSIG A …www.usf.edu 20151216023910 20141216023910 … usf.edu. Base 64 encoding of signature} DNSSEC Records not after not before key name 8

9 Introduce a new data type: DNSKEY name TTL class type value { usf.edu. 82310 IN DNSKEY Base 64 encodingusf.edu of public key} name TTL class type covered_type { usf.edu. 82310 IN RRSIG DNSKEY …usf.edu 20151216023910 20141216023910 … edu. Base 64 encoding of signature} DNSSEC Records not after not before key name 9

10 Authenticated Non-existence What if the usf.edu server is asked the IP address of a non-existent url (e.g. foo.usf.edu)? –Can’t sign non-existence on the fly because the server does not have the private key (why?) NSEC record –“The url after eng.usf.edu is global.usf.edu” –Order all the url’s in a zone and sign all the NSEC records ahead of time –Problem: enables zone enumeration –NSEC3 addresses this concern by using hashes of zone names instead of zone names themselves 10

11 PK usf2 Sig{PK usf } PK edu sign Key Management NS for.edu NS for usf.edu PK edu PK usf DS Record PK signing Do not need to notify parent if changed … PK usf2 Want to change PK usf to PK usf2 11

12 Potential Usage of DNSSEC If successfully deployed, DNSSEC can serve as a universal Public Key Infrastructure (PKI) –Sign public keys for web sites –Sign public keys for email addresses Can this really be achieved? –Existing systems like X.509 have so far failed to provide a universal PKI –DNSSEC has a major difference from X.509 Key compromise at a node only affects a subdomain 12

13 SSL/TLS AliceBob E(PK B, s) K C, K M = h(s) PK B PK B is Bob’s public key I am Bob, inc I am Alice {m} K C || MAC K M (m)

14 DNS-based Authentication of Named Entities (DANE) Use DNSSEC to sign certain statements (DANE records) –The currently proposed DANE records address trust of TLS certificates TLSA DANE records –Yet another type of DNS resource record (RR) –Three types of statements CA Constraints Service Certificate Constraints Trust Anchor Assertion 14

15 Advantages of DANE compared with X.509 Real delegation of power –Better accountability –More flexibility –Better damage control Clearer semantics –X.509 certificate encompasses everything –DANE records only means that “this domain’s owner says…” 15

16 Problems of DNSSEC Key revocation –If a zone’s private key is compromised, the damage continues even after the key is replaced, until the parent’s cert on the key expires –Certificate revocation? All the revocation problems with public keys will apply –Issue short-term certificates instead? Then the upper-level zones will have to be more involved in maintaining the DNSSEC structure Against the initial design principles of DNS: autonomy of individual zones 16

17 Deployment Status Has been on-going for a number of years –Check status: http://www.dnssec-deployment.org/ http://www.internetsociety.org/deploy360/dnssec/ maps/ Root domain signed July, 2010 –DNSSEC now deployed at key zones including net, com, gov, and edu “Almost” ready to use at the resolver level 17

Download ppt "DNS Security Extension 1. Implication of Kaminsky Attack Dramatically reduces the complexity and increases the effectiveness of DNS cache poisoning –No."

Similar presentations

DNSSEC in Windows Server. DNS Server changes Provide DNSSEC support in the DNS server – Changes should allow federal agencies to comply with SC-20 and.

DNSSEC in Windows Server. DNS Server changes Provide DNSSEC support in the DNS server – Changes should allow federal agencies to comply with SC-20 and.
Review iClickers. Ch 1: The Importance of DNS Security.

Review iClickers. Ch 1: The Importance of DNS Security.
State of DNS Security Extensions Edward Lewis February 26, 2001 APRICOT 2001 Panel.

State of DNS Security Extensions Edward Lewis February 26, 2001 APRICOT 2001 Panel.
RRSIG:“I certify that this DNS record set is correct” Problem: how to certify a negative response, i.e. that a record doesn’t exist? NSEC:“I certify that.

RRSIG:“I certify that this DNS record set is correct” Problem: how to certify a negative response, i.e. that a record doesn’t exist? NSEC:“I certify that.
1 Securing BGP using DNSSEC Lutz Donnerhacke db089309: 1c1c 6311 ef09 d819 e029 65be bfb6 c9cb.

1 Securing BGP using DNSSEC Lutz Donnerhacke db089309: 1c1c 6311 ef09 d819 e029 65be bfb6 c9cb.
Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.

Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.
DNS Security Overview AROC Guatemala July 2010. What’s the Problem? Until July of 2008 the majority of authoritative DNS servers worldwide were completely.

DNS Security Overview AROC Guatemala July What’s the Problem? Until July of 2008 the majority of authoritative DNS servers worldwide were completely.
COEN 350 Public Key Infrastructure. PKI Task: Securely distribute public keys. Certificates. Repository for retrieving certificates. Method for revoking.

COEN 350 Public Key Infrastructure. PKI Task: Securely distribute public keys. Certificates. Repository for retrieving certificates. Method for revoking.
DNSSEC & Email Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.

DNSSEC & Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.
Lecture 18 Page 1 CS 236 Online DNS Security The Domain Name Service (DNS) translates human-readable names to IP addresses –E.g., thesiger.cs.ucla.edu.

Lecture 18 Page 1 CS 236 Online DNS Security The Domain Name Service (DNS) translates human-readable names to IP addresses –E.g., thesiger.cs.ucla.edu.
Domain Name System. DNS is a client/server protocol which provides Name to IP Address Resolution.

Domain Name System. DNS is a client/server protocol which provides Name to IP Address Resolution.
Computer Networks: Domain Name System. The domain name system (DNS) is an application-layer protocol for mapping domain names to IP addresses Vacation.

Computer Networks: Domain Name System. The domain name system (DNS) is an application-layer protocol for mapping domain names to IP addresses Vacation.
DNS Security A.Lioy, F.Maino, M. Marian, D.Mazzocchi Computer and Network Security Group Politecnico di Torino (Italy) presented by: Marius Marian.

DNS Security A.Lioy, F.Maino, M. Marian, D.Mazzocchi Computer and Network Security Group Politecnico di Torino (Italy) presented by: Marius Marian.
1 SecSpider: Distributed DNSSEC Monitoring Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.

1 SecSpider: Distributed DNSSEC Monitoring Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.
Security and Information Assurance for the DNS Dan Massey USC/ISI.

Security and Information Assurance for the DNS Dan Massey USC/ISI.
1 Observations from the DNSSEC Deployment Dan Massey Colorado State University Joint work with Eric Osterweil and Lixia Zhang UCLA.

1 Observations from the DNSSEC Deployment Dan Massey Colorado State University Joint work with Eric Osterweil and Lixia Zhang UCLA.
Application Layer At long last we can ask the question - how does the user interface with the network?

Application Layer At long last we can ask the question - how does the user interface with the network?
1 The State and Challenges of the DNSSEC Deployment Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.

1 The State and Challenges of the DNSSEC Deployment Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.
CS470, A.SelcukPKI1 Public Key Infrastructures CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukPKI1 Public Key Infrastructures CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
DNS-centric PKI Sean Turner Russ Housley Tim Polk.

DNS-centric PKI Sean Turner Russ Housley Tim Polk.

Similar presentations

Ads by Google