The KeyTrap Denial-of-Service Algorithmic Complexity Attacks On DNS | allinfosecnews.com

Feb. 22, 2024, 4:04 p.m. |

Packet Storm packetstormsecurity.com

In this paper, the authors show that the design of DNSSEC is flawed. Exploiting vulnerable recommendations in the DNSSEC standards, they developed a new class of DNSSEC-based algorithmic complexity attacks on DNS, they dubbed KeyTrap attacks. All popular DNS implementations and services are vulnerable. With just a single DNS packet, the KeyTrap attacks lead to a 2.000.000x spike in CPU instruction count in vulnerable DNS resolvers, stalling some for as long as 16 hours. This devastating effect prompted major DNS …

attacks authors class complexity design dns dnssec exploiting keytrap packet popular recommendations service services single standards vulnerable

More from packetstormsecurity.com / Packet Storm

Debian Security Advisory 5676-1 19 hours ago | packetstormsecurity.com

advisory arbitrary code chromium code +13

Ubuntu Security Notice USN-6747-2 19 hours ago | packetstormsecurity.com

attacker denial of service domains exploit +16

htmlLawed 1.2.5 Remote Command Execution 20 hours ago | packetstormsecurity.com

command concept exploit proof +1

Red Hat Security Advisory 2024-2651-03 20 hours ago | packetstormsecurity.com

advisory denial of service enterprise linux +7

Red Hat Security Advisory 2024-2645-03 20 hours ago | packetstormsecurity.com

advisory enterprise linux red hat +5

1,400 GitLab Servers Impacted By Exploited Vulnerability 20 hours ago | packetstormsecurity.com

data loss exploited flaw gitlab +3

Hackers Compromised Dropbox eSignature Service 20 hours ago | packetstormsecurity.com

compromised dropbox flaw hacker +2

Hacker Free-For-All Fights For Control Of Home And Office Routers Everywhere 20 hours ago | packetstormsecurity.com

botnet control email free +6

REvil Ransomware Scum Gets 14 Years, $16 Million Fine 20 hours ago | packetstormsecurity.com

cryptography cybercrime fraud hacker +5

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Data Privacy Manager m/f/d)

@ Coloplast | Hamburg, HH, DE

View on infosec-jobs.com

Cybersecurity Sr. Manager

@ Eastman | Kingsport, TN, US, 37660

View on infosec-jobs.com

KDN IAM Associate Consultant

@ KPMG India | Hyderabad, Telangana, India

View on infosec-jobs.com

Learning Experience Designer in Cybersecurity (f/m/div.) (Salary: ~113.000 EUR p.a.*)

@ Bosch Group | Stuttgart, Germany

View on infosec-jobs.com

Senior Security Engineer - SIEM

@ Samsara | Remote - US

View on infosec-jobs.com