Take a sneak peek at the new NIST.gov and let us know what you think!
(Please note: some content may not be complete on the beta site.).
NIST Authors in Bold
|Author(s):||Scott W. Rose; Anastase Nakassis; Ramaswamy Chandramouli;|
|Title:||Information Leakage Through the Domain Name System|
|Published:||March 31, 2011|
|Abstract:||The Domain Name System (DNS) is the global lookup service for network resources. It is often the first step in an Internet transaction as well as a network attack. An attacker can query an organization's DNS as reconnaissance before attacking hosts on a particular network. There are different ways a zone administrator can minimize information leakage. This paper describes the risk and examines the protocol and operational options and looks at their advantages and drawbacks.|
|Keywords:||DNS, DNSSEC, PII|
|Research Areas:||Information Technology, Networking|
|PDF version:||Click here to retrieve PDF version of paper (71KB)|