Following on from three earlier papers entitled “Slamming”, “Domain Names and Search Engine Optimisation” and “Key Players in Internet Governance”, this new paper gives a summary of the most widespread types of attack and the main techniques used for dealing with them.
Containing graphics and diagrams, illustrated with specific examples, and including bibliographic references, the paper shows that the DNS today is an essential, strategic element in the infrastructure of the Internet. The paper:
explains how the DNS works, focusing on its structure and the software used to make it work;
details the main kinds of attacks on domain names, infrastructures or DNS servers such as cybersquatting, hijacking, poisoning, denial of service, fast flux etc.;
highlights the main security techniques that currently exist, such as use of DNSSEC or the regular updating of DNS software.
Finally, this paper shows that Internet infrastructure security today is everybody’s business, and relies on the judicious allocation of roles amongst the various players such as service operators, ISPs, registries, registrars, etc.
In order to do this, each player needs to apply the basic principles of effective security represented by the “3C”, i.e., Coordination, Communication and Cooperation.
Download the issue paper “DNS: Types of Attack and Security Techniques” (1336Ko).
(Association Française pour le Nommage Internet en Coopération )
Non-profit organization, AFNIC is in charge of the administrative and technical management of the .fr (France) and .re (Reunion Island) Internet domain names.
AFNIC brings together public and private members: representatives from the French government, Internet users and Internet Service Providers (Registrars).