Keynote Address: Breaking Dnssec presented at 3rd USENIX Workshop on Offensive Technologies 2009

by Daniel J. Bernstein, University Chicago,

Tags: Security Keynote

Summary : More than two hundred sites around the world have installed DNSSEC during the past year, so attackers can finally gain hands-on experience with breaking DNSSEC servers. How quickly does DNSSEC leak private information? How powerful are today's DNSSEC servers when they are abused as denial-of-service amplifiers? How easy is it to forge DNS data from a DNSSEC server?