A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : Resolver side mitigations
Author(s) : G. Barwood
Filename : draft-barwood-dnsext-fr-resolver-mitigations-08.txt
Pages : 11
Date : 2008-10-26
Describes mitigations against spoofing attacks on DNS, including:
(1) Repeating the query, including techniques for handling
non-deterministic responses.
(2) Prepending a random nonce to the question where a referral is
probable.
(3) Estimating the entropy available, taking into account
(a) Observed packets with incorrect IDs.
(b) The content of the cache.
A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-barwood-dnsext-fr-resolver-mitigations-08.txt
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
Below is the data which will enable a MIME compliant mail reader
implementation to automatically retrieve the ASCII version of the
Internet-Draft.
- <ftp://ftp.ietf.org/internet-drafts/draft-barwood-dnsext-fr-resolver-mitigations-08.txt>
-
_______________________________________________
I-D-Announce@ietf.org
https://www.ietf.org/mailman/listinfo/i-d-announce
Internet-Draft directories: http://www.ietf.org/shadow.html
or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
