A Formal Framework for End-to-End DNS Resolution

METADATA ONLY

Author / Producer

Liu, Si Duan, Huayi Heimes, Lukas

Date

2023-09

Publication Type

Conference Paper

ETH Bibliography

yes

Citations

Altmetric
METADATA ONLY

Data

Rights / License

Abstract

Despite the central importance of DNS, numerous attacks and vulnerabilities are regularly discovered. The root of the problem is the ambiguity and tremendous complexity of DNS protocol specifications, amid a rapidly evolving Internet infrastructure. To counteract the vicious break-and-fix cycle for improving DNS infrastructure, we instigate a foundational approach: we construct the first formal semantics of end-to-end name resolution, a collection of components for the formal analyses of both qualitative and quantitative properties, and an automated tool for discovering DoS attacks. Our formal framework represents an important step towards a substantially more secure and reliable DNS infrastructure.

Permanent link

http://hdl.handle.net/20.500.11850/637787

Publication status

published

External links

https://doi.org/10.1145/3603269.3604870 north_east

Editor

Book title

ACM SIGCOMM '23: Proceedings of the ACM SIGCOMM 2023 Conference

Journal / series

Volume

Pages / Article No.

932 - 949

Publisher

Association for Computing Machinery

Event

37th ACM SIGCOMM Conference (SIGCOMM 2023)

Edition / version

Methods

Software

Geographic location

Date collected

Date created

Subject

DNS; Formal Semantics; Maude; Statistical Model Checking; DoS

Organisational unit

03634 - Basin, David / Basin, David check_circle
03975 - Perrig, Adrian / Perrig, Adrian check_circle

Notes

Funding

215318 - RHINE: A Highly Secure and Available Domain Name Infrastructure (SNF)

Related publications and datasets

More

Show all metadata