1 / 8

DNS and DNSSec

DNS and DNSSec. Eustace Asanghanwa Andrew Bates Shane Jahnke Brian Wilke. Introduction. Standard DNS Security Concerns DNSSEC Management Implications Impact to Embedded Systems Conclusions. Standard DNS. Security Concerns. UDP Query ID only 16 bits Small search space

kelly-kirk
Download Presentation

DNS and DNSSec

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. DNS and DNSSec Eustace Asanghanwa Andrew Bates Shane Jahnke Brian Wilke

  2. Introduction • Standard DNS • Security Concerns • DNSSEC • Management Implications • Impact to Embedded Systems • Conclusions

  3. Standard DNS

  4. Security Concerns • UDP • Query ID only 16 bits • Small search space • Well known ports

  5. DNSSEC • Public Key Infrastructure, e.g. SSL • Chain of Authority • Validation of DNS records

  6. Management Implications • Who manages keys? • Root keys • Key rotation • Clock synchronization • Requires wide spread adoption • Few production implementations

  7. Impact to Embedded Systems • Embedding Challenges • Limited memory & storage • Limited CPU resources • Limited power • Expensive secure storage • Linux and BIND9 installed, and DNS configured. Currently configuring for DNSSEC

  8. Conclusions • DNS has security concerns • DNSSEC offers solutions • Solutions introduce new problems

More Related