Take a sneak peek at the new NIST.gov and let us know what you think!
(Please note: some content may not be complete on the beta site.).

View the beta site
NIST logo

Publication Citation: Information Leakage Through the Domain Name System

NIST Authors in Bold

Author(s): Scott W. Rose; Anastase Nakassis; Ramaswamy Chandramouli;
Title: Information Leakage Through the Domain Name System
Published: March 31, 2011
Abstract: The Domain Name System (DNS) is the global lookup service for network resources. It is often the first step in an Internet transaction as well as a network attack. An attacker can query an organization's DNS as reconnaissance before attacking hosts on a particular network. There are different ways a zone administrator can minimize information leakage. This paper describes the risk and examines the protocol and operational options and looks at their advantages and drawbacks.
Citation: OTHER -
Pages: 4 pp.
Keywords: DNS, DNSSEC, PII
Research Areas: Information Technology, Networking
PDF version: PDF Document Click here to retrieve PDF version of paper (71KB)