DNSCurve

Voila!

Saturday, October 11. 2008

DNSCurve

Yesterday I attended a lecture by professor D.J. Bernstein, best known for his products like qmail, owner of one of the coolest domain names in the world and for his often controversial but always interesting visions.

His talk focused on why the majority of internet traffic still is not encrypted. We protect our email passwords but the 95% of other things we do is completely unprotected from a sniffer. He then narrowed it down to DNS. The problems with DNSSEC are evident and it's still a question of whether it will ever be implemented (after 15 years the design is still in flux, let alone that it's properly implemented or actually used).

On a more constructive side he presented his own solution: DNSCurve: using elliptic curve cryptography to not only sign but also encrypt DNS traffic, and do so on the fly rather than the cumbersome precomputation approach of DNSSEC. Bernstein shows that the extra cost of on the fly cryptography is, even for root servers, very minor compared to the costs of the entire system, but it does significantly reduce the administrative burden compared to DNSSEC. As usual he has made an interesting case, a worthwhile read.

Posted by Thijs Kinkhorst in FLOSS at 13:24 | Comments (2) | Trackbacks (0)

Trackbacks
Trackback specific URI for this entry

No Trackbacks

Comments
Display comments as (Linear | Threaded)

Surely it throws an important baby out with the bath water, since it doesn't prevent someone controlling the server from spoofing answers in the same way as DNSSEC. Thus, no matter how good the cryptography, any weakness on any .NET or root server, and the Internet is owned. Where as a key issue for ICANN in deploying DNSSEC is to make sure they are signing elsewhere in a secured environment. Secure the key, or secure all the servers - seems an easy choice. Might seem a small issue if you are bottom.of.the.pile.sld.tld, but if you are "." (how many root servers are there these days? I think slaving root is the most useful suggestion in the paper in that sense) or "mil." or "mod.uk." you want a chain of trust all the way to the top. Of course one might argue that the problem is that different DNS users have widely differing security requirements, so one size doesn't fit all. But I'm not sure we want to be deploying more than one system.
#1 Simon on 2008-10-12 21:14 (Reply)
The advantage of DNSSEC is rather marginal, and comes at a very high complexity, that is in itself likely to lead to security problems. Securing the DNS servers is not much harder than securing the signing servers, and practically they are likely to be the same servers except for the root. My view is that DNSCurve may well be better way forward. We routinely trust that the servers we deal with are operated securely, the current problem with DNS are due to the lack of authetication of packets oassing over the network, and spoofing vulnerabilities. Where high security is required, application level security is required in any case, so the highly complex and probaly unreliable DNSSEC is not justified.
#1.1 George Barwood on 2009-06-28 16:48 (Reply)

Add Comment

E-Mail addresses will not be displayed and will only be used for E-Mail notifications

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA
 
 

Categories


All categories

Quicksearch

Blogroll

Stefan
Matthijs
Jeroen
Jelmer
Jurriaan
Mirjam
Steven
Bart
Pieter
Michiel

Planeet A-Eskwadraat
Planet Debian Efteling

Syndicate This Blog

Licence

Creative Commons License - Some Rights Reserved