all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Attacking with Something That Does Not Exist: Low-Rate Flood with 'Proof of Non-Existence' Can Exhaust DNS Resolver CPU

Add to bookmarks
March 25, 2024, 4:11 a.m. | Olivia Gruza (Goethe-Universit\"at Frankfurt), Elias Heftrig (Goethe-Universit\"at Frankfurt), Oliver Jacobsen (Goethe-Universit\"at Frankfurt), Haya

cs.CR updates on arXiv.org arxiv.org

arXiv:2403.15233v1 Announce Type: new
Abstract: NSEC3 is a proof of non-existence in DNSSEC, which provides an authenticated assertion that a queried resource does not exist in the target domain. NSEC3 consists of alphabetically sorted hashed names before and after the queried hostname. To make dictionary attacks harder, the hash function can be applied in multiple iterations, which however also increases the load on the DNS resolver during the computation of the SHA-1 hashes in NSEC3 records. Concerns about the load …

arxiv can cpu cs.cr dns dnssec domain flood low names non proof rate resolver resource target

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Why You Should Not Trust Interpretations in Machine Learning: Adversarial Attacks on Partial Dependence Plots 12 hours ago | arxiv.org
adoption adversarial adversarial attacks artificial +22
Sui Lutris: A Blockchain Combining Broadcast and Consensus 12 hours ago | arxiv.org
agreement arxiv blockchain broadcast +12
Jolteon and Ditto: Network-Adaptive Efficient Consensus with Asynchronous Fallback 12 hours ago | arxiv.org
arxiv asynchronous blockchains clear +19
Noisy Measurements Are Important, the Design of Census Products Is Much More Important 12 hours ago | arxiv.org
arxiv asking august call +19
Graphene: Infrastructure Security Posture Analysis with AI-generated Attack Graphs 12 hours ago | arxiv.org
analysis arxiv assessment attack +31
REED: Chiplet-Based Accelerator for Fully Homomorphic Encryption 12 hours ago | arxiv.org
accelerator accelerators address application +14
Evaluation Methodologies in Software Protection Research 12 hours ago | arxiv.org
arms arxiv assets attackers +20
SoK: Rowhammer on Commodity Operating Systems 12 hours ago | arxiv.org
academia access arxiv attacks +17
Quantum cryptographic protocols with dual messaging system via 2D alternate quantum walks and genuine single … 12 hours ago | arxiv.org
alternate arxiv can cond-mat.dis-nn +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Principal Business Value Consultant

@ Palo Alto Networks | Chicago, IL, United States
View on infosec-jobs.com

Cybersecurity Specialist, Sr. (Container Hardening)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

Penetration Testing Engineer- Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com

Internal Audit- Compliance & Legal Audit-Dallas-Associate

@ Goldman Sachs | Dallas, Texas, United States
View on infosec-jobs.com

Threat Responder

@ Deepwatch | Remote
View on infosec-jobs.com
View more jobs