A new approach to DNS security (DNSSEC)

Authors:
Giuseppe Ateniese;Stefan Mangard
Affiliations:
The Johns Hopkins University, Baltimore, MD;Graz University of Technology, Graz, Austria
Venue:
CCS '01 Proceedings of the 8th ACM conference on Computer and Communications Security
Year:
2001

Citing 4
Cited 3

Network security via private-key certificates

ACM SIGOPS Operating Systems Review
DNS and BIND

DNS and BIND
Public Key distribution with secure DNS

SSYM'96 Proceedings of the 6th conference on USENIX Security Symposium, Focusing on Applications of Cryptography - Volume 6
Using the domain name system for system break-ins

SSYM'95 Proceedings of the 5th conference on USENIX UNIX Security Symposium - Volume 5

An Extensible Platform for Evaluating Security Protocols

ANSS '05 Proceedings of the 38th annual Symposium on Simulation
On the performance and analysis of DNS security extensions

CANS'05 Proceedings of the 4th international conference on Cryptology and Network Security
Spread Identity: A new dynamic address remapping mechanism for anonymity and DDoS defense

Journal of Computer Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

The Domain Name System (DNS) is a distributed database that allows convenient storing and retrieving of resource records. DNS has been extended to provide security services (DNSSEC) mainly through public-key cryptography. We propose a new approach to DNSSEC that may result in a significantly more efficient protocol. We introduce a new strategy to build chains of trust from root servers to authoritative servers. The techniques we employ are based on symmetric-key cryptography.