Presentation is loading. Please wait.

Presentation is loading. Please wait.

September 18th 2009 DNSSEC Restoring trust in DNS Roland van Rijswijk roland.vanrijswijk [at] surfnet.nl In cooperation with:

Published byAugustus Randall Modified over 9 years ago

Similar presentations

Presentation on theme: "September 18th 2009 DNSSEC Restoring trust in DNS Roland van Rijswijk roland.vanrijswijk [at] surfnet.nl In cooperation with:"— Presentation transcript:

1 September 18th 2009 DNSSEC Restoring trust in DNS Roland van Rijswijk roland.vanrijswijk [at] surfnet.nl In cooperation with:

2 About us SURFnet. We make innovation work1 High quality and high bandwith network for higher education and research Shared ICT innovation centre for academia Over 180 connected institutions (universities, polytechnics, vocational education, hospitals, research institutions) with 1 million end-users Independent consultancy company Cryptography expertise Internet security expertise

3 SURFnet. We make innovation work2 Overview -First half: -Attacks on DNS -Second half: -DNSSEC in detail -Questions: please ask!

4 SURFnet. We make innovation work3 DNS: Roadsigns for the net

5 SURFnet. We make innovation work4 DNS: insecurity by design? -DNS was designed in the early Internet era -Everybody more or less knew everybody else -And everybody trusted everybody else -Bottom line: Security was not a design criterion

6 SURFnet. We make innovation work5 Threats to DNS -Availability -If DNS is not available, the internet is broken (users think) -A typical DNS resolver services 100000+ end users -Some authoritative servers host over 8 million zones -Exploitation -On an exploited server availability and integrity are broken -Plus the attacker can gain access to all other software on the same server/client -Integrity -DNS gives the wrong answer and sends you the wrong way Slide content courtesy of Bert Hubert (PowerDNS)

7 SURFnet. We make innovation work6 Why attack DNS? -DNS is everywhere: -In your phone, in your laptop, in your PC… -But also in your car, in an ATM, in your elevator, … -It is very hard to protect DNS against attacks (currently) -It is very easy to attack a lot of users

8 www.piggybank.dom A: 123.45.67.89 Let’s start simple www.piggybank.dom A? Referral to auth. www.piggybank.dom A: 123.45.67.89 www.piggybank.dom A? Question: name a general attack model that is applicable to this setup Answer: a man in the middle attack

9 Beyond M-i-t-M: spoofing IPheaders & stuff src IP = 192.87.106.101 (ns1.surfnet.nl) dst IP = 208.77.188.166 (www.example.com) UDPsrc port = 53dst port = 4321 headers & stuff DNSQID = 1201some flags Question# = 1Answer# = 1 Authority# = 3Add. record# = 3 Q?A record for www.surfnet.nl Ans.www.surfnet.nl = 194.171.26.203 Aut.surfnet.nl = ns1.surfnet.nl Aut.surfnet.nl = ns2.surfnet.nl Aut.surfnet.nl = ns3.surfnet.nl Add.ns1.surfnet.nl = 192.87.106.101 Add.ns2.surfnet.nl = 192.87.36.2 Add.ns3.surfnet.nl = 195.169.124.71

10 www.piggybank.dom A: 123.57.89.15 Cache poisoning www.piggybank.dom A? Referral to auth. www.piggybank.dom A: 123.57.89.15 www.piggybank.dom A? Question: how can I target a specific name? Answer: introduce a rogue client

11 SURFnet. We make innovation work10 So where do we go today? ;-)

12 SURFnet. We make innovation work11 Is it really a threat? Yes because: -Source port randomisation was not common practice before Kaminsky -Query ID randomisation wasn’t common practice either No because: -You can only attempt to poison a name a few times per day (why?)

13 SURFnet. We make innovation work12 Cache poisoning++ -Dan Kaminsky published an attack at last year’s Black Hat conference -No need to wait for a resolver to take initiative, no need to wait for TTL expiry…

14 Preparing for Kaminsky IPheaders & stuff src IP = 192.87.106.101 (ns1.surfnet.nl) dst IP = 208.77.188.166 (www.example.com) UDPsrc port = 53dst port = 4321 headers & stuff DNSQID = 1201some flags Question# = 1Answer# = 1 Authority# = 3Add. record# = 3 Q?A record for www.surfnet.nl Ans.www.surfnet.nl = 194.171.26.203 Aut.surfnet.nl = ns1.surfnet.nl Aut.surfnet.nl = ns2.surfnet.nl Aut.surfnet.nl = ns3.surfnet.nl Add.ns1.surfnet.nl = 192.87.106.101 Add.ns2.surfnet.nl = 192.87.36.2 Add.ns3.surfnet.nl = 195.169.124.71

15 Attack in action 12345.piggybank.dom A: 123.45.67.89 12345.piggybank.dom A??? QID=1234 12345.piggybank.dom A??? QID=1235 QID=1233 QID=1234 QID=1235 Success! Additional: NS piggybank.dom go to piggybank auth. 12345.piggybank.dom A???

16 SURFnet. We make innovation work15 Spoofed additional section ;; QUESTION SECTION: ;abcde.piggybank.dom. IN A ;; ANSWER SECTION: abcde.piggybank.dom. 582 IN A 123.45.67.89 ;; AUTHORITY SECTION: piggybank.dom. 3161 IN NS ns1.piggybank.dom. piggybank.dom. 3161 IN NS ns2.piggybank.dom. ;; ADDITIONAL SECTION: ns1.piggybank.dom. 604800 IN A 123.45.67.1 ns2.piggybank.dom. 604800 IN A 123.45.67.2

17 Attack in action www.piggybank.dom A? www.piggybank.dom A: 123.45.67.89 www.piggybank.dom A: 123.45.67.89

18 SURFnet. We make innovation work17 So it’s even worse!

19 Impact on threat level (1) -Kaminsky is happening (we think, but is damn hard to detect): -Wide-scale patching has been rolled out -But research shows: Poisoning unpatched BIND: ±3 seconds Poisoning patched BIND: 1-11 hours (source: NIC.cz) SURFnet. We make innovation work18

20 Impact on threat level (2) -Kaminsky is happening on our network! SURFnet. We make innovation work19

21 Impact on threat level (3) SURFnet. We make innovation work20 -Kaminsky is happening on our network!

22 Impact on threat level (4) SURFnet. We make innovation work21 -Kaminsky is happening on our network!

23 SURFnet. We make innovation work22 The slow attack -Brute force attacks are easy to detect -But the slow attack is very insidious… research by Bert Hubert (PowerDNS) shows: Graph courtesy of Bert Hubert

24 Summary

25 Break time

26 SURFnet. We make innovation work25 What is DNSSEC?(1) -DNSSEC is an extension to DNS specified by the IETF in a number of RFCs -Actively developed since 1997 -According to RFC 4033: “ The Domain Name System Security Extensions (DNSSEC) add data origin authentication and data integrity to the Domain Name System.”

27 SURFnet. We make innovation work26 What is DNSSEC?(2) -DNSSEC makes it possible to check the authenticity of DNS records -This is accomplished using public key cryptography -What DNSSEC does not do: -Provide confidentiality -Protect against threats to the name server (DDoS, etc.) -Guarantee correctness of the DNS data (only authenticity) -Protect against phishing, typosquatting, etc.

28 SURFnet. We make innovation work27 Cryptography in DNSSEC (1) -Public key cryptography -RSA, DSA, (Elliptic Curve) -All based on a common principle: the key- pair -Private Key is used to sign well protected, hidden from outsiders -Public Key is used to verify must be widely published

29 SURFnet. We make innovation work28 Cryptography in DNSSEC (2) -Signing takes place at zone level -2-tiered key model: -Key Signing Key -Large key size (≥ 2048 bits RSA) -Long validity (≥ 1 year) -Used to sign Zone Signing Key -Zone Signing Key -Smaller key size (≥ 1024 bits RSA) -Short validity (± 1 month) -Used to sign the zone (resource records)

30 SURFnet. We make innovation work29 Signing DNS zones -Additional resource records (RRs) -For public keys: -DNSKEY, DS -For signatures: -RRSIG -For authenticated denial-of-existence: -NSEC, NSEC3 -Zones become quite a bit larger

31 SURFnet. We make innovation work30 Validating a response  Query “www.nist.gov” @ns1.nist.gov  INAwww.nist.gov129.6.13.45  INRRSIG156 0020502000151804A10 623C49E8D53CF7E6046E69 737403676F7600...  signature! -Validate this signature against the “nist.gov” zone public zone signing key -It’s the resolver’s job to do this! -How do I find and trust the “nist.gov” key?

32 SURFnet. We make innovation work31 Current deployment -Deployed on several TLDs: -ccTLD’s:.bg,.br,.cz,.pr,.se -generic TLD’s:.org,.gov,.museum -Announced for more TLDs: -generic TLD’s:.com and.net (2011) (> 65% of all domains!) -Good news: root is likely to be signed before end of 2009 (bad news: politics…) -Many (cc)TLD’s still to announce strategy

33 Trust chain

34 SURFnet. We make innovation work33 Islands of trust

35 SURFnet. We make innovation work34 Finding trust anchors -Managing trust anchors by hand is hard work -IANA has made the “Interim Trust Anchor Repository” (ITAR) available https://itar.iana.org/ https://itar.iana.org/ -ISC has introduced “DNSSEC look-a-side validation” (DLV) and made a repository available -No standard way to trust the trust anchors of these repositories -These are interim solutions

36 DLV

37 SURFnet. We make innovation work36 Key management(1) -Key Signing Key and Zone Signing Key have a limited validity; this requires regular roll-overs:

38 SURFnet. We make innovation work37 Key management (2) -Keys need to be stored securely  off-line, smart card, Hardware Security Module (HSM),... -Administrators need to plan for emergency key roll-over -The parent has to be notified of new keys for a domain (this needs to be automated)

39 SURFnet. We make innovation work38 Future

40 SURFnet. We make innovation work39 Criticism on DNSSEC The Top-10 Reasons Why DNSSEC Is the String Theory of the Internet 10. Adds many new dimensions to an already complex problem 9. Hogs all the research funds 8. Has many careers riding on it 7. Widely hailed by expert and layman alike as the next big thing 6. Responds to shortcomings by reinventing itself and doubling its complexity 5. On its third iteration to succes 4. Attracts the brightest minds of the industry 3. Cult-like following among believers 2. Always on the verge of solving a real world problem 1. Will be ready in 6 months! Bert Hubert (PowerDNS) -Even the critics agree that DNSSEC is the only available solution at the moment -That doesn’t mean that DNSSEC is perfect… far from it -DNSSEC is hard (especially compared to ‘ordinary’ DNS, which is very forgiving) -The (un)availability of easy-to-use tools is hindering deployment of signed zones

41 SURFnet. We make innovation work40 DNSSEC software -But there is light on the tool horizon: -OpenDNSSEC (www.opendnssec.org)www.opendnssec.org -Secure64 DNS Signer -Xelerance DNSX Signer -ZKT (Zone Key Tool, www.hznet.de/dns/zkt)www.hznet.de/dns/zkt -PowerDNS + DNSSEC = PowerDNSSEC -other vendors have announced products -For resolvers it’s a different matter, tools are widely available: -Unbound (by NLnetLabs) -BIND 9.x and up -Windows Server announced (2008 R2, Server 7)

42 SURFnet. We make innovation work41 Alternatives(1) -Continue patching against attacks (keep using traditional DNS) -This is an arms race -The race is already being lost! (remember the 6 weeks attack that Bert Hubert talked about yesterday) -SSL/TLS -Too heavyweight to use on connections to DNS servers -Does not secure a domain against cache-poisoning; getting an SSL certificate is easy

43 SURFnet. We make innovation work42 Alternatives(2) -TSIG/SIG(0) -TSIG is based on shared secrets (does not scale) -SIG(0) secures transactions (no authentication of records!) -DNScurve -Based on elliptic curve crypto -Can do much more than DNSSEC -Only proves authenticity online (forwarder based) -No widescale deployment/support

44 SURFnet. We make innovation work43 Alternatives(3) -DNS 0x20 -Based on using capitalisation to introduce extra entropy into a query -Capitalise parts of the query at random and check that the capitalisation in the answer matches the query -Should be compatible with existing DNS infrastructure (RFC 4343) -But depends on all name server software to implement literal query copying (most do) -Criticism: it’s still an arms race -And it doesn’t protect ‘.’

45 SURFnet. We make innovation work44 Summary -What does DNSSEC do for you? -You can prove the authenticity of the records in your domain -You can check the authenticity of the records of others -You effectively protect yourself against attacks like Kaminsky’s

46 SURFnet. We make innovation work45 What have we done? -SURFnet’s resolvers perform DNSSEC validation:

47 SURFnet. We make innovation work46 What are we going to do? -Extend our managed DNS service with DNSSEC support -Testing DNSSEC appliances as they appear on the market -Keep supporting OpenDNSSEC -Give talks like this one :-)

48 SURFnet. We make innovation work47 What can you do? -Gather knowledge on DNSSEC -SURFnet DNSSEC white paper (www.dnssec.nu)www.dnssec.nu -Available at the end of this class -Update/reconfigure your resolvers to support DNSSEC validation and experiment with it -Work on an open source tool project! -Go to the OpenDNSSEC website and test the software

49 SURFnet. We make innovation work48 Questions? Thank you for your attention! Roland van Rijswijk roland.vanrijswijk [at] surfnet.nl Rick van Rein rick [at] openfortress.nl Presentation released under Creative Commons (http://creativecommons.org/licenses/by-nc-sa/3.0/nl/deed.en)http://creativecommons.org/licenses/by-nc-sa/3.0/nl/deed.en

50 Lab work -You are going to perform the Kaminsky attack -Install BIND as a resolver -Download the code IMPORTANT: The code is provided under embargo, please discard it after the lab work is done -We’d like you to finish with a short presentation of your findings

51 URL -http://dnssec1.students.os3.nl/DNSspoof.tgz

Download ppt "September 18th 2009 DNSSEC Restoring trust in DNS Roland van Rijswijk roland.vanrijswijk [at] surfnet.nl In cooperation with:"

Similar presentations

Review iClickers. Ch 1: The Importance of DNS Security.

Review iClickers. Ch 1: The Importance of DNS Security.
State of DNS Security Extensions Edward Lewis February 26, 2001 APRICOT 2001 Panel.

State of DNS Security Extensions Edward Lewis February 26, 2001 APRICOT 2001 Panel.
Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.

Sergei Komarov. DNS  Mechanism for IP hostname resolution  Globally distributed database  Hierarchical structure  Comprised of three components.
DNS Security Overview AROC Guatemala July 2010. What’s the Problem? Until July of 2008 the majority of authoritative DNS servers worldwide were completely.

DNS Security Overview AROC Guatemala July What’s the Problem? Until July of 2008 the majority of authoritative DNS servers worldwide were completely.
More on SSL/TLS. Internet security: TLS TLS is one of the more prominent internet security protocols. TLS is one of the more prominent internet security.

More on SSL/TLS. Internet security: TLS TLS is one of the more prominent internet security protocols. TLS is one of the more prominent internet security.
DNSSEC & Email Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.

DNSSEC & Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.
Lecture 18 Page 1 CS 236 Online DNS Security The Domain Name Service (DNS) translates human-readable names to IP addresses –E.g., thesiger.cs.ucla.edu.

Lecture 18 Page 1 CS 236 Online DNS Security The Domain Name Service (DNS) translates human-readable names to IP addresses –E.g., thesiger.cs.ucla.edu.
Computer Networks: Domain Name System. The domain name system (DNS) is an application-layer protocol for mapping domain names to IP addresses Vacation.

Computer Networks: Domain Name System. The domain name system (DNS) is an application-layer protocol for mapping domain names to IP addresses Vacation.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
DNS Security A.Lioy, F.Maino, M. Marian, D.Mazzocchi Computer and Network Security Group Politecnico di Torino (Italy) presented by: Marius Marian.

DNS Security A.Lioy, F.Maino, M. Marian, D.Mazzocchi Computer and Network Security Group Politecnico di Torino (Italy) presented by: Marius Marian.
DNS Security Extension (DNSSEC). Why DNSSEC? DNS is not secure –Applications depend on DNS ►Known vulnerabilities DNSSEC protects against data spoofing.

DNS Security Extension (DNSSEC). Why DNSSEC? DNS is not secure –Applications depend on DNS ►Known vulnerabilities DNSSEC protects against data spoofing.
1 SecSpider: Distributed DNSSEC Monitoring Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.

1 SecSpider: Distributed DNSSEC Monitoring Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.
Security and Information Assurance for the DNS Dan Massey USC/ISI.

Security and Information Assurance for the DNS Dan Massey USC/ISI.
CMSC 414 Computer and Network Security Lecture 9 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 9 Jonathan Katz.
1 Observations from the DNSSEC Deployment Dan Massey Colorado State University Joint work with Eric Osterweil and Lixia Zhang UCLA.

1 Observations from the DNSSEC Deployment Dan Massey Colorado State University Joint work with Eric Osterweil and Lixia Zhang UCLA.
© Afilias Limitedwww.afilias.info SM Challenges of Deploying DNSSEC: Prepare your ccTLD with Secondary DNS services LACNIC Meeting May 2010 Presented by:

© Afilias Limitedwww.afilias.info SM Challenges of Deploying DNSSEC: Prepare your ccTLD with Secondary DNS services LACNIC Meeting May 2010 Presented by:
1 The State and Challenges of the DNSSEC Deployment Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.

1 The State and Challenges of the DNSSEC Deployment Eric Osterweil Michael Ryan Dan Massey Lixia Zhang.
Foundations of Network and Computer Security J J ohn Black Lecture #36 Dec 12 th 2007 CSCI 6268/TLEN 5831, Fall 2007.

Foundations of Network and Computer Security J J ohn Black Lecture #36 Dec 12 th 2007 CSCI 6268/TLEN 5831, Fall 2007.
PKI To The Masses IPCCC 2004 Dan Massey USC/ISI. 1 March PKI Is Necessary l My PKI related actions since arriving at IPCCC n Used an.

PKI To The Masses IPCCC 2004 Dan Massey USC/ISI. 1 March PKI Is Necessary l My PKI related actions since arriving at IPCCC n Used an.
Domain Name System Security Extensions (DNSSEC) Hackers 2.

Domain Name System Security Extensions (DNSSEC) Hackers 2.

Similar presentations

Ads by Google