NETSEC
Network & Security Research Laboratory
Department of Computer and Information ScienceUniversity of Oregon
DNS Security
The Domain Name System (DNS) of the Internet helps translate human-readable domain names to IP addresses and has become indispensable for using the Internet. However, DNS is not secure. There are many means, for example, to mislead users visiting a legitimate domain to a malicous IP address.
We have uncovered a vulnerability of DNS (in collaboration with Tsinghua University and the University of Georgia) that affects the large majority of popular DNS implementations. It allows a malicious domain name to stay resolvable long after it has been removed from the upper level DNS servers.
Our publications include the following:- J. Jiang, J. Liang, K. Li, J. Li, H. Duan, and J. Wu, "Ghost domain names: Revoked yet still resolvable," in 19th Network and Distributed System Security Symposium, February 2012.
Last Update: 07/21/2012