network 6 dnssec
play

Network #6: DNSSEC 1 Meme Of The Day: How To Talk To Those - PowerPoint PPT Presentation

Dec 31, 2022 •343 likes •759 views

Computer Science 161 Fall 2016 Popa and Weaver Network #6: DNSSEC 1 Meme Of The Day: How To Talk To Those Outside the Field Computer Science 161 Fall 2016 Popa and Weaver 2 A Warning: I'm Giving Unfiltered DNSSEC Computer Science

  1. Computer Science 161 Fall 2016 Popa and Weaver Network #6: 
 DNSSEC 1

  2. Meme Of The Day: 
 How To Talk To Those Outside the Field Computer Science 161 Fall 2016 Popa and Weaver 2

  3. A Warning: 
 I'm Giving Unfiltered DNSSEC Computer Science 161 Fall 2016 Popa and Weaver • Why? • Because it is a well thought through cryptographic protocol designed to solve a real world data integrity problem • It is a real world PKI with some very unique trust properties: • A constrained path of trust along established business relationships . • It is important to appreciate the real world of what it takes to build a secure system • I've worked with it for far too much for my own sanity... • And I'm a cruel bastard 3

  4. Hypothetical: 
 Securing DNS Using SSL/TLS Computer Science 161 Fall 2016 Popa and Weaver root DNS server ( ‘ . ’ ) Host at xyz.poly.edu wants 
 parent for .edu IP address for www.mit.edu 2 3 TLD DNS server ( ‘ .edu ’ ) 4 parent for mit.edu local DNS server 
 5 (resolver) dns.poly.edu Idea: connections {1,8}, {2,3}, {4,5} and {6,7} all 6 7 1 8 run over SSL / TLS authoritative DNS server ns.mit.edu child domain requesting host www.mit.edu xyz.poly.edu 4

  5. But This Doesn't Work Computer Science 161 Fall 2016 Popa and Weaver • TLS provides channel integrity, but we need data integrity • TLS in this scheme is not end to end • In particular, the recursive resolver is a known adversary: • "NXDOMAIN wildcarding": a "helpful" page when you give a typo • Malicious MitM of targeted schemes for profit • TLS in this scheme is painfully slow : • DNS lookups are 1 RTT, this is 3 RTTs! • And confidentiality is of little benefit: • We use DNS to contact hosts: 
 Keeping the DNS secret doesn't actually disguise who you talk to! 5

  6. DNS security: 
 If the Attacker sees the tra ffi c... Computer Science 161 Fall 2016 Popa and Weaver • All bets are o ff : • DNS o ff ers NO protection against an on-path or in-path adversary • Attacker sees the request, sends the reply, and the reply is accepted! • The recursive resolver is the most common in-path adversary! • It is implicitly trusted • Yet often abuses the trust • And this scheme keeps the resolver as the in-path adversary 6

  7. So Instead Let's Make 
 DNS a PKI and records certificates Computer Science 161 Fall 2016 Popa and Weaver • www.berkeley.edu is already trusting the DNS authorities for berkeley.edu , .edu , and . (the root) • Since www.berkeley.edu is in bailiwick for all these servers and you end up having to contact all of them to get an answer. • So let's start signing things: • . will sign .edu's key • .edu will sign Berkeley's key • Berkeley's key will sign the record • DNSSEC: DNS Security Extensions • A heirarchical, distributed trust system to validate the mappings of names to values 7

  8. Enter DNSSEC (DNS Security Extensions) Computer Science 161 Fall 2016 Popa and Weaver • An extension to the DNS protocol to enable cryptographic authentication of DNS records • Designed to prove the value of an answer, or that there is no answer ! • A restricted path of trust • Unlike the HTTPS CA (Certificate Authority) system where your browser trusts every CA to speak for every site • With backwards compatibility: • Authority servers don’t need to support DNSSEC • But clients should know that the domain is not secured • Recursive and stub resolvers that don’t support DNSSEC must not receive DNSSEC information 8

  9. Reminder: 
 DNS Message Structure Computer Science 161 Fall 2016 Popa and Weaver • DNS messages: • A fixed header: Transaction ID, flags, etc... • 1 question: Asking for a name and type • 0-N answers: The set of answers • 0-N authority: (“glue records”): Information about the authority servers 
 and/or ownership of the domain • 0-N additional: (“glue records”): Information about the authority server’s IP addresses • Glue records are needed for the resolution process but aren’t the answer to the question 9

  10. Reminder: 
 DNS Resource Records and RRSETs Computer Science 161 Fall 2016 Popa and Weaver • DNS records (Resource Records) can be one of various types • Name TYPE TTL Value • Groups of records of the same name and type form RRSETs: • E.g. all the nameservers for a given domain. • All the records in the RRSET have the same name, type, and TTL 10

  11. The First New Type: OPT Computer Science 161 Fall 2016 Popa and Weaver • DNS contains some old limits: • Only 8 total flag bits, and messages are limited to 512B • DNSSEC messages are much bigger • DNSSEC needs two additional flags • DO: Want DNSSEC information • CD: Don’t check DNSSEC information • EDNS0 (Extension Mechanisms for DNS) adds the OPT resource record • Sent in the request and reply in the additional section • Uses CLASS field to specify how large a UDP reply can be handled • Uses TTL field to add 16 flag bits • Only flag bit currently used is DO • Used to signal to the authority that the client desires DNSSEC information 11

  12. EDNS0 in action Computer Science 161 Fall 2016 Popa and Weaver • A query using dig +bufsize=1024 uses EDNS0 nweaver% dig +norecurse +bufsize=1024 slashdot.org @a.root-servers.net ; <<>> DiG 9.8.3-P1 <<>> +bufsize=1024 slashdot.org @a.root-servers.net ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 13419 ;; flags: qr; QUERY: 1, ANSWER: 0, AUTHORITY: 6, ADDITIONAL: 13 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;slashdot.org. IN A ;; AUTHORITY SECTION: org. 172800 IN NS a0.org.afilias-nst.info. ... 12

  13. The second new type, a certificate: RRSIG Computer Science 161 Fall 2016 Popa and Weaver • A signature over an RRSET (not just a single answer): 
 Multiple fields • Type: The DNS type which this is the RRSIG for • Algorithm: IANA assigned identifier telling the encryption algorithm • Labels: Number of segments in the DNS name • Original TTL: The TTL for the record delivered by the authority • Signature Expiration • Signature Inception • Both in seconds since January 1, 1970 • Key tag: What key was used (roughly. Its a checksum on the key bits) • Signer’s name • Signature 13

  14. So an RRSIG in action (The NS entries for isc.org. ) Computer Science 161 Fall 2016 Popa and Weaver • Type of the record its an RRSIG • Valid 2013-04-15-23:32:55 to for 2013-05-15-23:32:53 • Algorithm #5: RSA/SHA-1 • Key tag 50012 • 2 labels in the name • Key belongs to isc.org. • 7200s initial TTL • And lots of cryptogarbage... nweaver% dig +dnssec NS isc.org @8.8.8.8 ... ;; ANSWER SECTION: isc.org. 4282 IN NS ns.isc.afilias-nst.info. isc.org. 4282 IN NS sfba.sns-pb.isc.org. isc.org. 4282 IN NS ord.sns-pb.isc.org. isc.org. 4282 IN NS ams.sns-pb.isc.org. isc.org. 4282 IN RRSIG NS 5 2 7200 20130515233253 20130415233253 50012 isc.org. HUXmb89gB4pVehWRcuSkJg020gw2d8QMhTrcu1ZD7nKomXHQFupXl5vT iq5VUREGBQtnT7FEdPEJlCiJeogbAmqt3F1V5kBfdxZLe/EzYZgvSGWq sy/VHI5d+t6/ 14 EiuCjM01UXCH1+L0YAqiHox5gsWMzRW2kvjZXhRHE2+U i1Q=

  15. How Do We Know What Key To Use Part 1: DNSKEY Computer Science 161 Fall 2016 Popa and Weaver • The DNSKEY record stores key information • 16 bits of flags • Protocol identifier (always 3) • Algorithm identifier • And then the key itself • The keys are split into multiple roles • The Key Signing Key (KSK) is used only to sign the DNSKEY RRSET • The Zone Signing Key (ZSK) is used to sign everything else • The client has hardwired in one key for . • This is the root’s KSK (Key Signing Key) 15

  16. The DNSKEY for . Computer Science 161 Fall 2016 Popa and Weaver • The first is the root’s ZSK • The RRSIG is signed using the KSK • The second is the root’s • Now the client can verify that the KSK ZSK is correct nweaver% dig +norecurse +dnssec DNSKEY . @a.root-servers.net ... ;; ANSWER SECTION: . 172800 IN DNSKEY 256 3 8 AwEAAc5byZvwmHUlCQt7WSeAr3OZ2ao4x0Yj/ 3UcbtFzQ0T67N7CpYmN qFmfvXxksS1/E+mtT0axFVDjiJjtklUsyqIm9ZlWGZKU3GZqI9Sfp1Bj Qkhi+yLa4m4y4z2N28rxWXsWHCY740PREnmUtgXRdthwABYaB2WPum3y RGxNCP1/ . 172800 IN DNSKEY 257 3 8 AwEAAagAIKlVZrpC6Ia7gEzahOR+9W29euxhJhVVLOyQbSEW0O8gcCjF FVQUTf6v58fLjwBd0YI0EzrAcQqBGCzh/ RStIoO8g0NfnfL2MTJRkxoX bfDaUeVPQuYEhg37NZWAJQ9VnMVDxP/VHL496M/QZxkjf5/Efucp2gaD X6RS6CXpoY68LsvPVjR0ZSwzz1apAzvN9dlzEheX7ICJBBtuA6G3LQpz W5hOA2hzCTMjJPJ8LbqF6dsV6DoBQzgul0sGIcGOYl7OyQdXfZ57relS Qageu+ipAdTTJ25AsRTAoub8ONGcLmqrAmRLKBP1dfwhYB4N7knNnulq QxA+Uk1ihz0= . 172800 IN RRSIG DNSKEY 8 0 172800 20130425235959 20130411000000 19036 . {Cryptographic Goop} 16

  17. But how do we know what key to use part 2? DS Computer Science 161 Fall 2016 Popa and Weaver • The DS (Delegated Signer) record is relatively simple • The key tag • The algorithm identifier • The hash function used • The hash of the signer’s name and the KSK • The parent signs DS (Delegated Signer) records for the child’s keys • So for the DS for .org is provided by the root • This is returned with the NS RRSET by the parent • And the RRSIG is signed by the parent, not the child 17

Recommend

.SE-DNSSEC Commercial launch of .SE-DNSSEC Feb 16, 2007 Signing Soft launch of service the

.SE-DNSSEC Commercial launch of .SE-DNSSEC Feb 16, 2007 Signing Soft launch of service the

. SE-DNSSEC . SEs DNSSEC service Staffan.Hagnell@iis.se .SE-DNSSEC Commercial launch of .SE-DNSSEC Feb 16, 2007 Signing Soft launch of service the .SE zone Sep 2005 2006 Start of project 2001 .SEs challenge To make DNSSEC

584 views • 24 slides
DNSSEC in .at (and beyond) Panel discussion DNSSEC activities in Europe DNSSEC workshop

DNSSEC in .at (and beyond) Panel discussion DNSSEC activities in Europe DNSSEC workshop

ICANN 50 DNSSEC in .at (and beyond) Panel discussion DNSSEC activities in Europe DNSSEC workshop Jun 25 2014 Alexander Mayrhofer London, UK alexander.mayrhofer@nic.at ICANN 50 DNSSEC Services n ccTLD: .at l DNSSEC in production

109 views • 10 slides
So you want to do DNSSEC... v 2.01 Dr Eberhard W Lisse Namibian Network Information Centre (cc)

So you want to do DNSSEC... v 2.01 Dr Eberhard W Lisse Namibian Network Information Centre (cc)

So you want to do DNSSEC... v 2.01 Dr Eberhard W Lisse Namibian Network Information Centre (cc) ICANN 55, Marrakesh Dr EW Lisse (NA-NiC) So you want to do DNSSEC... ICANN 55, Marrakesh 1 / 8 ICANN Africa Strategy Version 2.0 DNSSEC R

105 views • 8 slides
DNSSEC activities @ nic.at Panel discussion DNSSEC activities in Europe DNSSEC workshop

DNSSEC activities @ nic.at Panel discussion DNSSEC activities in Europe DNSSEC workshop

ICANN44 DNSSEC activities @ nic.at Panel discussion DNSSEC activities in Europe DNSSEC workshop Jun 27 2012 Alexander Mayrhofer Prague, CZ alexander.mayrhofer@nic.at ICANN44 .at DNSSEC Timeline Testbed DS in root Feb 2011 Feb 09

404 views • 8 slides
DNSSEC resolving at SURFnet ICANN38, DNSSEC panel discussion, Brussels Roland van Rijswijk

DNSSEC resolving at SURFnet ICANN38, DNSSEC panel discussion, Brussels Roland van Rijswijk

DNSSEC resolving at SURFnet ICANN38, DNSSEC panel discussion, Brussels Roland van Rijswijk roland.vanrijswijk [at] surfnet.nl June 23rd 2010 woensdag 2 juni 2010 About SURFnet National Research and Educational Network in The Netherlands

154 views • 11 slides
Deploying New DNSSEC Algorithms ICANN 53 DNSSEC Workshop June 24, 2015 Buenos Aires, Argentina

Deploying New DNSSEC Algorithms ICANN 53 DNSSEC Workshop June 24, 2015 Buenos Aires, Argentina

Deploying New DNSSEC Algorithms ICANN 53 DNSSEC Workshop June 24, 2015 Buenos Aires, Argentina Dan York, Internet Society www.internetsociety.org/deploy360 DNSSEC Algorithms Used to generate keys for signing DNSKEY Used in DNSSEC

490 views • 18 slides
DNSSEC CS 161: Computer Security Prof. David Wagner April 11, 2016 DNSSEC Last lecture, you

DNSSEC CS 161: Computer Security Prof. David Wagner April 11, 2016 DNSSEC Last lecture, you

DNSSEC CS 161: Computer Security Prof. David Wagner April 11, 2016 DNSSEC Last lecture, you invented DNSSEC. Well, the basic ideas, anyway: Sign all DNS records. Signatures let you verify answer to DNS query, without having to trust the

835 views • 49 slides
DNSSEC Trust Anchor Repositories (TAR) Update Russ Mundy Co-Chair DNSSEC Deployment Initiative

DNSSEC Trust Anchor Repositories (TAR) Update Russ Mundy Co-Chair DNSSEC Deployment Initiative

DNSSEC Trust Anchor Repositories (TAR) Update Russ Mundy Co-Chair DNSSEC Deployment Initiative Russ.Mundy@cobham.com / mundy@sparta.com www.dnssec-deployment.org DNSSEC Trust Anchors Starting point for DNSSEC validation Choice of

375 views • 16 slides
Monitoring DNSSEC Martin Leucht &lt;martin.leucht@os3.nl&gt; Julien Nyczak

Monitoring DNSSEC Martin Leucht &lt;martin.leucht@os3.nl&gt; Julien Nyczak

Monitoring DNSSEC Martin Leucht &lt;martin.leucht@os3.nl&gt; Julien Nyczak &lt;julien.nyczak@os3.nl&gt; Supervisor: Rick van Rein System and Network Engineering 2015 Introduction DNSSEC becomes more and more popular Expired RRSIG RR

468 views • 18 slides
Challenges To Deploying New DNSSEC Algorithms ICANN 55 DNSSEC Workshop March 8, 2016 Marrakech,

Challenges To Deploying New DNSSEC Algorithms ICANN 55 DNSSEC Workshop March 8, 2016 Marrakech,

Challenges To Deploying New DNSSEC Algorithms ICANN 55 DNSSEC Workshop March 8, 2016 Marrakech, Morocco Dan York, Internet Society www.internetsociety.org/deploy360 DNSSEC Algorithms Used to generate keys for signing DNSKEY Used

417 views • 15 slides
DNSSEC with SmartcardHSM Not as Easy as One Thinks Eberhard W Lisse Namibian Network Information

DNSSEC with SmartcardHSM Not as Easy as One Thinks Eberhard W Lisse Namibian Network Information

DNSSEC with SmartcardHSM Not as Easy as One Thinks Eberhard W Lisse Namibian Network Information Centre 2015-06-24 Lisse (NA-NiC) SmartcardHSM 2015-06-24 1 / 10 Introduction Why? So, what are we looking for? Easy off the shelf DNSSEC

739 views • 10 slides
An Overview of DNSSEC Cesar Diaz cesar@ lacnic.net 1 DNSSEC??? The DNS Security

An Overview of DNSSEC Cesar Diaz cesar@ lacnic.net 1 DNSSEC??? The DNS Security

An Overview of DNSSEC Cesar Diaz cesar@ lacnic.net 1 DNSSEC??? The DNS Security Extension (DNS SEC) attach special kind of information called criptographic signatures to the queries and response that let your computer false

609 views • 34 slides
Deployment of DNSSEC at .ee ICANN 49: DNSSEC Workshop Timo Vhmar | 26.03.2014 | Introduction

Deployment of DNSSEC at .ee ICANN 49: DNSSEC Workshop Timo Vhmar | 26.03.2014 | Introduction

Deployment of DNSSEC at .ee ICANN 49: DNSSEC Workshop Timo Vhmar | 26.03.2014 | Introduction About Estonian Internet Foundation DNSSEC what, why, when Techie stuff Actual work Current situation | 26.03.2014 | Estonian

240 views • 9 slides
.ke DNSSec Update Toilem Poriot Godwin .ke DNSsec update Update on what .ke registry

.ke DNSSec Update Toilem Poriot Godwin .ke DNSsec update Update on what .ke registry

.ke DNSSec Update Toilem Poriot Godwin .ke DNSsec update Update on what .ke registry experienced 30th April 2015-- Longest mornings I have ever had. Day started as usual but takes a turn at 9:30am Great day turns to a

449 views • 11 slides
Rolling the Root Zone DNSSEC Key Signing Key Presented by Carlos Martnez, on behalf of ICANN |

Rolling the Root Zone DNSSEC Key Signing Key Presented by Carlos Martnez, on behalf of ICANN |

Rolling the Root Zone DNSSEC Key Signing Key Presented by Carlos Martnez, on behalf of ICANN | 1 Motivation for the Talk ICANN is about to change an important configuration parameter in DNSSEC For a network DNS operator, this may

377 views • 21 slides
DNSSEC Workshop @ ICANN Activities from the Region: - DNSSEC deployment in .pt 23 June 2010

DNSSEC Workshop @ ICANN Activities from the Region: - DNSSEC deployment in .pt 23 June 2010

DNSSEC Workshop @ ICANN Activities from the Region: - DNSSEC deployment in .pt 23 June 2010 Sara Monteiro Technical Infrastructure Service of DNS.PT Agenda ! About us ! Scope ! Goals ! Initiatives and Support ! Developments on .pt ! Next Steps

468 views • 11 slides
13 Things to Consider Before DNSSEC John Kristoff jtk@cymru.com FIRST 2010 John Kristoff

13 Things to Consider Before DNSSEC John Kristoff jtk@cymru.com FIRST 2010 John Kristoff

13 Things to Consider Before DNSSEC John Kristoff jtk@cymru.com FIRST 2010 John Kristoff Team Cymru 1 Where is the DNSSEC? We make no endorsement of DNSSEC here We offer no repudiation of DNSSEC here The considerations herein

543 views • 31 slides
Security of IPv6 and DNSSEC for penetration testers Vesselin Hadjitodorov Master education

Security of IPv6 and DNSSEC for penetration testers Vesselin Hadjitodorov Master education

Security of IPv6 and DNSSEC for penetration testers Vesselin Hadjitodorov Master education System and Network Engineering June 30, 2011 Agenda Introduction DNSSEC security IPv6 security Conclusion Questions Security of IPv6

625 views • 33 slides
DNS and DNSSEC Management and Monitoring Changes Required During A Transition To DNSSEC Wes

DNS and DNSSEC Management and Monitoring Changes Required During A Transition To DNSSEC Wes

DNS and DNSSEC Management and Monitoring Changes Required During A Transition To DNSSEC Wes Hardaker &lt;wes.hardaker@parsons.com&gt; Overview Business Model Changes Relationship Requirements Relationship with your DNS parent

407 views • 25 slides
DNSSEC security without maintenance ... with the right software and registry Petr paek

DNSSEC security without maintenance ... with the right software and registry Petr paek

DNSSEC security without maintenance ... with the right software and registry Petr paek petr.spacek@nic.cz 2019-02-03 1w Redraw max 1y 6m 3m 1m 5d 1h 1d 30 ~ 19 % DNSSEC? Who cares? DNSSEC Validation Capability Metrics

433 views • 25 slides
Measuring the Deployment of DNSSEC over the Internet System &amp; Network Engineering Research

Measuring the Deployment of DNSSEC over the Internet System &amp; Network Engineering Research

Introduction Methodology Results Measuring the Deployment of DNSSEC over the Internet System &amp; Network Engineering Research Project Nicolas Canceill SNE RP2 Presentations July 2, 2014 1/19 Introduction Methodology Results

398 views • 19 slides
DNSSEC usage sta-s-cs and some observa-ons SEE 5, Tirana Sergey Myasoedov 20.4.2016 DNSSEC

DNSSEC usage sta-s-cs and some observa-ons SEE 5, Tirana Sergey Myasoedov 20.4.2016 DNSSEC

DNSSEC usage sta-s-cs and some observa-ons SEE 5, Tirana Sergey Myasoedov 20.4.2016 DNSSEC history Defined by RFCs 4033-4035 March 2005 Root zone signed July 2010 March 2011 the biggest zone .com signed New GTLD

811 views • 32 slides
Measuring the Deployment of DNSSEC over the Internet System &amp; Network Engineering Research

Measuring the Deployment of DNSSEC over the Internet System &amp; Network Engineering Research

Introduction Methodology Results Measuring the Deployment of DNSSEC over the Internet System &amp; Network Engineering Research Project Nicolas Canceill RIPE68 May 14, 2014 1/20 Introduction Methodology Results Introduction 1

673 views • 20 slides
DNSSEC at Scale Dani Grant | DNS @ CloudFlare CloudFlare - Authoritative DNS provider (includes

DNSSEC at Scale Dani Grant | DNS @ CloudFlare CloudFlare - Authoritative DNS provider (includes

DNSSEC at Scale Dani Grant | DNS @ CloudFlare CloudFlare - Authoritative DNS provider (includes DNSSEC for free) - 4M+ domains - 40+ billion queries per day - 76 edge locations in 40 countries (growing) DNSSEC at Scale 1. Elliptic

597 views • 34 slides

More recommend