Perils of transitive trust in the domain name system

Ramasubramanian, Venugopalan; Sirer, Emin Gün

doi:10.1145/1330107.1330152

Cited by 54 publications

(44 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Unfortunately [19]), the resulting relationships form a more elaborate trust network, transitively [19]. (c) Finally, nameservers of a domain have implicit relationships with the nameservers of the parent domain, which are trusted by default.…”

Section: Background and Related Workmentioning

confidence: 99%

“…This snapshot was generated from a study done at Cornell University [19] and contains 166, 771 distinct name servers that contribute towards resolution of 597, 196 distinct domains. Figure 5 shows the CDF of the number of attacks against the authoritative nameservers of the parent domain that the majority-consensus approach can tolerate.…”

Section: A Security Analysismentioning

confidence: 99%

“…To construct the DNS trust graph, we used the same DNS relationships dataset obtained from Cornell [19] we used previously. We represent the nameservers as vertices and undirected edges as the trust relationships between all authoritative nameservers of a domain.…”

Section: ) Resilience From Sybil Attacksmentioning

confidence: 99%

See 2 more Smart Citations

TrickleDNS: Bootstrapping DNS security using social trust

Sankararaman

Chen

Subramanian

et al. 2012

2012 Fourth International Conference on Communication Systems and Networks (COMSNETS 2012)

Self Cite

View full text Add to dashboard Cite

Abstract-This paper presents TrickleDNS, a decentralized system for proactive dissemination of DNS data. Unlike prior solutions, which depend on the complete deployment of DNSSEC standard to preserve data integrity, TrickleDNS offers an incrementally deployable solution with a probabilistic guarantee on data integrity that becomes stronger as the adoption of DNSSEC increases. TrickleDNS provides resilience from data corruption attacks and denial of service attacks, including sybil attacks, using three key steps. First, TrickleDNS organizes participating nameservers into a well-connected peer-to-peer Secure Network of Nameservers (SNN) using two types of trust links: (a) strongly trusted social relationships across DNS servers (which exist today); (b) random yet constrained weak trust links between DNS servers, which it introduces. The SNN allows nameservers in the network to reliably broadcast their public-keys to each other without relying on a centralized PKI. Second, TrickleDNS reliably binds domains to their authoritative name servers through independent verification by multiple, randomly chosen peers within the SNN. Finally, TrickleDNS servers proactively disseminate self-certified versions of DNS records to provide faster performance, better availability, and improved security.

show abstract

Section: Background and Related Workmentioning

confidence: 99%

Section: A Security Analysismentioning

confidence: 99%

See 1 more Smart Citation

TrickleDNS: Bootstrapping DNS security using social trust

Sankararaman

Chen

Subramanian

et al. 2012

2012 Fourth International Conference on Communication Systems and Networks (COMSNETS 2012)

Self Cite

View full text Add to dashboard Cite

show abstract

“…Attackers were able to alter DNS messages or even hijack DNS sessions by taking advantage of the lack of cryptography as well as of the small set and non-randomized transaction identities. Even in 2005, after many years of DNS usage, it was found that reliance on poor transitive trust relations can lead, in many cases, to failures-as they occur in different administrative domains than the attacked DNS server [15]. Rendezvous networks should be designed with trust in mind, moreover as we learned from the DNS paradigm, no matter how well-designed a protocol is, its implementation may suffer from security vulnerabilities, therefore a reliable rendezvous network should be fault tolerant.…”

Section: Security Threatsmentioning

confidence: 99%

Towards a Secure Rendezvous Network for Future Publish/Subscribe Architectures

Fotiou

Marias

Polyzos

2010

Future Internet - FIS 2010

View full text Add to dashboard Cite

Abstract. Publish/Subscribe is often regarded as a promising paradigm for Future Internet architectures. Its information oriented nature and its particular security features have stimulated current research efforts which aim at applying publish/subscribe principles to a clean-slate Internet architecture. One of the core components of publish/subscribe architectures is the rendezvous network. Any security failure that a rendezvous network may face will probably jeopardize the operation of the whole (inter-)network. In this paper we highlight security requirements and potential security issues of rendezvous networks and we present security solutions that can be applied in order to shield them.

show abstract

“…This brittleness may be mitigated against to a certain degree, with backup coordinator nodes, however even in these cases the wider system is reliant upon the existence and performance of a small number of key nodes. Failure at these key points in the network may well cripple wider functionality, at best [45]. These drawbacks lead to the need for a truly decentralised approach to the allocation of resources that does not rely on a central coordinator [23].…”

Section: Decentralised Approachesmentioning

confidence: 99%

Resource allocation in decentralised computational systems: an evolutionary market-based approach

Lewis

Marrow

Yao

2009

Auton Agent Multi-Agent Syst

View full text Add to dashboard Cite

We present a novel market-based method, inspired by retail markets, for resource allocation in fully decentralised systems where agents are self-interested. Our market mechanism requires no coordinating node or complex negotiation. The stability of outcome allocations, those at equilibrium, is analysed and compared for three buyer behaviour models. In order to capture the interaction between self-interested agents, we propose the use of competitive coevolution. Our approach is both highly scalable and may be tuned to achieve specified outcome resource allocations. We demonstrate the behaviour of our approach in simulation, where evolutionary market agents act on behalf of service providing nodes to adaptively price their resources over time, in response to market conditions. We show that this leads the system to the predicted outcome resource allocation. Furthermore, the system remains stable in the presence of small changes in price, when buyers' decision functions degrade gracefully.

show abstract

Perils of transitive trust in the domain name system

Cited by 54 publications

References 10 publications

TrickleDNS: Bootstrapping DNS security using social trust

TrickleDNS: Bootstrapping DNS security using social trust

Towards a Secure Rendezvous Network for Future Publish/Subscribe Architectures

Resource allocation in decentralised computational systems: an evolutionary market-based approach

Contact Info

Product

Resources

About