BDBComp
Parceria:
SBC
Especificação Formal e Implementação de Mecanismos de Segurança para a Resolução de Nomes no DNS

Vagner SacramentoAnamaria MoreiraGuido LemosThais Batista

The specification of one of the most important protocols of the Internet - DNS (Domain Name System) - it presents flaws that allow the accomplishment of attacks in the applications implemented based on the specification. An attack that can be applied to the DNS is the falsification of IP in the domain names resolution, more known as DNS SPOOFING. In DNS specification does not exist precondition defined to provide security against DNS SPOOFING attacks. In this work we used the B language to specify part of RFC 1035 formally (DNS). With base in this specification we proved that DNS possess flaws, and specified one solution that proposes security procedure for the problems found in the DNS names resolution. As case study, we implemented the security patch of the model projected in the bind 8.2.5 and performed several experiments, implementing DNS SPOOFING attacks against the bind 8.2.5 with the security patch and against the original bind 8.2.5 and 9.1.3.

http://www.lbd.dcc.ufmg.br:8080/colecoes/sbrc/2002/054.pdf

Caso o link acima esteja inválido, faça uma busca pelo texto completo na Web: Buscar na Web

Biblioteca Digital Brasileira de Computação - Contato: bdbcomp@lbd.dcc.ufmg.br
     Mantida por:
LBD