Attacking with Something That Does Not Exist: Low-Rate Flood with 'Proof of Non-Existence' Can Exhaust DNS Resolver CPU | allinfosecnews.com

March 25, 2024, 4:11 a.m. | Olivia Gruza (Goethe-Universit\"at Frankfurt), Elias Heftrig (Goethe-Universit\"at Frankfurt), Oliver Jacobsen (Goethe-Universit\"at Frankfurt), Haya

cs.CR updates on arXiv.org arxiv.org

arXiv:2403.15233v1 Announce Type: new
Abstract: NSEC3 is a proof of non-existence in DNSSEC, which provides an authenticated assertion that a queried resource does not exist in the target domain. NSEC3 consists of alphabetically sorted hashed names before and after the queried hostname. To make dictionary attacks harder, the hash function can be applied in multiple iterations, which however also increases the load on the DNS resolver during the computation of the SHA-1 hashes in NSEC3 records. Concerns about the load …

arxiv can cpu cs.cr dns dnssec domain flood low names non proof rate resolver resource target

More from arxiv.org / cs.CR updates on arXiv.org

Dihedral Quantum Codes 2 days, 2 hours ago | arxiv.org

arxiv block class code +9

A Privacy Preserving System for Movie Recommendations Using Federated Learning 2 days, 2 hours ago | arxiv.org

arxiv businesses cs.cr cs.ir +20

VulLibGen: Identifying Vulnerable Third-Party Libraries via Generative Pre-Trained Model 2 days, 2 hours ago | arxiv.org

accelerate advisory arxiv cs.cr +24

Simultaneous Haar Indistinguishability with Applications to Unclonable Cryptography 2 days, 2 hours ago | arxiv.org

applications arxiv build cloning +11

SoK: Prudent Evaluation Practices for Fuzzing 2 days, 2 hours ago | arxiv.org

afl arxiv bugs concept +13

The Effect of Quantization in Federated Learning: A R\'enyi Differential Privacy Perspective 2 days, 2 hours ago | arxiv.org

arxiv can cs.cr cs.dc +15

Unveiling the Potential: Harnessing Deep Metric Learning to Circumvent Video Streaming Encryption 2 days, 2 hours ago | arxiv.org

arxiv attacks body cs.ai +16

SecureLLM: Using Compositionality to Build Provably Secure Language Models for Private, Sensitive, and Secret Data 2 days, 2 hours ago | arxiv.org

access arxiv back build +15

IBD-PSC: Input-level Backdoor Detection via Parameter-oriented Scaling Consistency 2 days, 2 hours ago | arxiv.org

adversaries arxiv attacks backdoor +22

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Sr. Staff Firmware Engineer – Networking & Firewall

@ Axiado | Bengaluru, India

View on infosec-jobs.com

Compliance Architect / Product Security Sr. Engineer/Expert (f/m/d)

@ SAP | Walldorf, DE, 69190

View on infosec-jobs.com

SAP Security Administrator

@ FARO Technologies | EMEA-Portugal

View on infosec-jobs.com