Enhancing DNS Security using the SSL Trust Infrastructure
Research output: Contribution to conferences › Paper › Contributed › peer-review
Contributors
Abstract
The main functionality of the domain name system (DNS) is to translate symbolic names into IP addresses. Due to the criticality of DNS for the proper functioning of the Internet, many improvements have been proposed for DNS in terms of security and dependability. However, the current secure DNS (DNSSEC) standard has still several problems that need further consideration. For example, online updates and denial of service attacks are not sufficiently addressed. These problems are serious obstacles that might prevent DNSSEC from replacing the traditional DNS. In this paper we discuss several of these technical and economic problems. To address these issues, we propose a simple extension to the existing DNS. It is SSL based and individual domains can decide independently of each other if and when to adopt the extensions. We show how to implement these extensions with the help of a simple proxy DNS server.
Details
| Original language | English |
|---|---|
| Pages | 21-27 |
| Number of pages | 7 |
| Publication status | Published - 2005 |
| Peer-reviewed | Yes |
Conference
| Title | 10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems |
|---|---|
| Conference number | |
| Duration | 2 February 2005 |
| Degree of recognition | International event |
| Location | |
| City | Sedona |
| Country | United States of America |
External IDs
| Scopus | 27544448817 |
|---|
Keywords
Research priority areas of TU Dresden
DFG Classification of Subject Areas according to Review Boards
Sustainable Development Goals
Keywords
- Domain Name System, computer crime, Web server, Data security, Computer architecture, Web and Internet services, Standards development, Large-Scale system, Delay, security of data, DNS security, SSL trust infrastructure, IP adressess, online updates, denial of services attacks, proxy DNS server