A new approach to DNS security (DNSSEC)

Giuseppe Ateniese; Stefan Mangard

doi:10.1145/501983.501996

A new approach to DNS security (DNSSEC)

Giuseppe Ateniese, Stefan Mangard

Department of Computer Science

Johns Hopkins University

Research output: Contribution to journal › Conference article › peer-review

52 Scopus citations

Abstract

The Domain Name System (DNS) is a distributed database that allows convenient storing and retrieving of resource records. DNS has been extended to provide security services (DNSSEC) mainly through public-key cryptography. We propose a new approach to DNSSEC that may result in a significantly more efficient protocol. We introduce a new strategy to build chains of trust from root servers to authoritative servers. The techniques we employ are based on symmetric-key cryptography.

Original language	English
Pages (from-to)	86-95
Number of pages	10
Journal	Proceedings of the ACM Conference on Computer and Communications Security
DOIs	https://doi.org/10.1145/501983.501996
State	Published - 2001
Event	Proceedings of the 8th ACM Conference on Computer and Communications Security (CCS-8) - Philadelphia, PA, United States Duration: 5 Nov 2001 → 8 Nov 2001

Keywords

Authentication Protocols
Digital Signatures
Domain Name System Security (DNSSEC)
Symmetric Encryption

Access to Document

10.1145/501983.501996

Cite this

@article{14dfdfaab21e40bdb1d68dc244b86c3d,

title = "A new approach to DNS security (DNSSEC)",

abstract = "The Domain Name System (DNS) is a distributed database that allows convenient storing and retrieving of resource records. DNS has been extended to provide security services (DNSSEC) mainly through public-key cryptography. We propose a new approach to DNSSEC that may result in a significantly more efficient protocol. We introduce a new strategy to build chains of trust from root servers to authoritative servers. The techniques we employ are based on symmetric-key cryptography.",

keywords = "Authentication Protocols, Digital Signatures, Domain Name System Security (DNSSEC), Symmetric Encryption",

author = "Giuseppe Ateniese and Stefan Mangard",

year = "2001",

doi = "10.1145/501983.501996",

language = "English",

pages = "86--95",

note = "Proceedings of the 8th ACM Conference on Computer and Communications Security (CCS-8) ; Conference date: 05-11-2001 Through 08-11-2001",

}

TY - JOUR

T1 - A new approach to DNS security (DNSSEC)

AU - Ateniese, Giuseppe

AU - Mangard, Stefan

PY - 2001

Y1 - 2001

N2 - The Domain Name System (DNS) is a distributed database that allows convenient storing and retrieving of resource records. DNS has been extended to provide security services (DNSSEC) mainly through public-key cryptography. We propose a new approach to DNSSEC that may result in a significantly more efficient protocol. We introduce a new strategy to build chains of trust from root servers to authoritative servers. The techniques we employ are based on symmetric-key cryptography.

AB - The Domain Name System (DNS) is a distributed database that allows convenient storing and retrieving of resource records. DNS has been extended to provide security services (DNSSEC) mainly through public-key cryptography. We propose a new approach to DNSSEC that may result in a significantly more efficient protocol. We introduce a new strategy to build chains of trust from root servers to authoritative servers. The techniques we employ are based on symmetric-key cryptography.

KW - Authentication Protocols

KW - Digital Signatures

KW - Domain Name System Security (DNSSEC)

KW - Symmetric Encryption

UR - http://www.scopus.com/inward/record.url?scp=0035751906&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0035751906&partnerID=8YFLogxK

U2 - 10.1145/501983.501996

DO - 10.1145/501983.501996

M3 - Conference article

AN - SCOPUS:0035751906

SN - 1543-7221

SP - 86

EP - 95

JO - Proceedings of the ACM Conference on Computer and Communications Security

JF - Proceedings of the ACM Conference on Computer and Communications Security

T2 - Proceedings of the 8th ACM Conference on Computer and Communications Security (CCS-8)

Y2 - 5 November 2001 through 8 November 2001

ER -

A new approach to DNS security (DNSSEC)

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this