Abstract
DNS zone administration is a complex task involving manual work and several entities and can therefore result in misconfigurations. Orphan records are one of these misconfigurations, in which a glue record for a delegation that does not exist anymore is forgotten in the zone file. Orphan records are a security hazard to third-party domains that have these records in their delegation, as an attacker may easily hijack such domains by registering the domain associated with the orphan. The goal of this paper is to quantify this misconfiguration, extending previous work by Kalafut et al., by identifying a new type of glue record misconfiguration – which we refer to as abandoned records – and by performing a broader characterization. Our results highlight how the situation has changed, not always for the better, compared to a decade-old study.
| Original language | English |
|---|---|
| Title of host publication | 2020 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW) |
| Place of Publication | Piscataway, NJ |
| Publisher | IEEE |
| Pages | 538-543 |
| Number of pages | 6 |
| ISBN (Electronic) | 978-1-7281-8597-2 |
| ISBN (Print) | 978-1-7281-8597-2, 978-1-7281-8598-9 |
| DOIs | |
| Publication status | Published - Sept 2020 |
| Event | 5th International Workshop on Traffic Measurements for Cybersecurity, WTMC 2020 - Genoa, Italy Duration: 7 Sept 2020 → 7 Sept 2020 Conference number: 5 |
Publication series
| Name | Proceedings - 5th IEEE European Symposium on Security and Privacy Workshops, Euro S and PW 2020 |
|---|
Conference
| Conference | 5th International Workshop on Traffic Measurements for Cybersecurity, WTMC 2020 |
|---|---|
| Abbreviated title | WTMC |
| Country/Territory | Italy |
| City | Genoa |
| Period | 7/09/20 → 7/09/20 |
Keywords
- DNS
- Orphan records
- Abandoned records
- Misconfiguration
- Cybersecurity
- 22/3 OA procedure