Mark Allman / ICSI @mallman_icsi

Kyle Schomp, Tom Callahan, Michael Rabinovich, Mark Allman. Assessing DNS Vulnerability to Record Injection, Passive and Active Measurement Conference, March 2014.
PDF | Kyle's Slides | Data


The Domain Name System (DNS) is a critical component of the Internet infrastructure as it maps human-readable names to IP addresses. Injecting fraudulent mappings allows an attacker to divert users from intended destinations to those of an attacker's choosing. In this paper, we measure the Internet's vulnerability to DNS record injection attacks---including a new attack we uncover. We find that record injection vulnerabilities are fairly common---even years after some of them were first uncovered.


    author    =        "Kyle Schomp and Tom Callahan and Michael Rabinovich and Mark Allman",
    title     =        "{Assessing DNS Vulnerability to Record Injection}",
    booktitle =        "Passive and Active Measurement Conference",
    year      =        2014,
    month     =        mar,

Parts of this work are also included in Tom Callahan's Ph.D. dissertation and Kyle Schomp's Ph.D. dissertation.
"We are what we repeatedly do. Excellence, then, is not an act, but a habit." --Aristotle