منابع مشابه
T-DNS: Connection-Oriented DNS to Improve Privacy and Security
This paper explores connection-oriented DNS to improve DNS security and privacy. DNS is the canonical example of a connectionless, single packet, request/response protocol, with UDP as its dominant transport. Yet DNS today is challenged by eavesdropping that compromises privacy, sourceaddress spoofing that results in denial-of-service (DoS) attacks on the server and third parties, injection att...
متن کاملT-DNS: Connection-Oriented DNS to Improve Privacy and Security (extended)
DNS is the canonical protocol for connectionless UDP. Yet DNS today is challenged by eavesdropping that compromises privacy, source-address spoofing that results in denial-ofservice (DoS) attacks on the server and third parties, injection attacks that exploit fragmentation, and size limitations that constrain policy and operational choices. We propose T-DNS to address these problems. It uses TC...
متن کاملDNS Privacy
KURZFASSUNG Im Domain Name System (DNS) existieren sowohl auf Seiten der Clients als auch auf Seiten der Betreiber erhebliche Sicherheitslücken im Bezug auf die Vertraulichkeit und Privatheit der jeweils eigenen Daten. Der Informationsfluss von Clients, die einen Domain Name auflösen wollen, findet unverschlüsselt statt und wird meist durch mehrere Server geleitet. Serverbetreiber und Angreifer...
متن کاملRearchitecting DNS
The Domain Name System (DNS) has been the naming service of the Internet for more than 20 years. It is the foundation of virtually all other distributed service. The deficiencies of DNS with respect to performance, availability, and reliability are well known. We want to systematically improve DNS by (1) measuring DNS performance, (2) evaluating past proposals, and (3) try to come up with a new...
متن کاملA Demonstration of DNS: a Semantic-Aware DNS Service
The Domain Name System (DNS) is a hierarchical and distributed database used to resolve domain names into IP addresses. The current Web infrastructure heavily relies on the DNS service to allow endusers to access Web pages and Web data using meaningful names (like “www.verisign.com”) rather than cryptic sequences of numbers (e.g., “69.58.181.89”). The main functionalities of the DNS have been s...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: ACM SIGCOMM Computer Communication Review
سال: 2015
ISSN: 0146-4833
DOI: 10.1145/2740070.2631442