Addressing complexity in DNS security: A case for improved security status indication based on a trust model

Mark Rivis, Eleana Asimakopoulou, Stelios Sotiriadis, Nik Bessis

Research output: Chapter in Book/Report/Conference proceedingConference proceeding (ISBN)peer-review

Abstract

The Domain Name System (DNS) is a hierarchical distributed naming system for Internet resources, but in some instances the protocol's insecurity threatens its proper functionality. To overcome this, the use of DNS Security Extensions (DNSSEC) has been proposed, and a partial deployment exists today. For the case of mobile devices that are connected to the Internet, there is possible use of different DNS servers at each location, with infrastructure warranting different degrees of trust for disaster management. In this work we propose the development of a trust model for DNS for cases of trust management. In particular we focus on different name resolution scenarios and protocols. Finally we propose a new user interface showing DNS security status, so that users can become aware of potentially compromised web sites.

Original languageEnglish
Title of host publicationProceedings - 2013 8th International Conference on P2P, Parallel, Grid, Cloud and Internet Computing, 3PGCIC 2013
PublisherIEEE Computer Society
Pages461-465
Number of pages5
ISBN (Print)9780769550947
DOIs
Publication statusPublished - 12 Dec 2013
Event2013 8th International Conference on P2P, Parallel, Grid, Cloud and Internet Computing, 3PGCIC 2013 - Compiegne, France
Duration: 28 Oct 201330 Oct 2013

Publication series

NameProceedings - 2013 8th International Conference on P2P, Parallel, Grid, Cloud and Internet Computing, 3PGCIC 2013

Conference

Conference2013 8th International Conference on P2P, Parallel, Grid, Cloud and Internet Computing, 3PGCIC 2013
Country/TerritoryFrance
CityCompiegne
Period28/10/1330/10/13

Keywords

  • Domain Name System Security Extensions
  • Domain Name System vulnerabilities
  • Security user interface
  • Trust model

Fingerprint

Dive into the research topics of 'Addressing complexity in DNS security: A case for improved security status indication based on a trust model'. Together they form a unique fingerprint.

Cite this