Framework for Domain Name System Security Extensions (DNSSEC) to support the IPv6 infrastructure
The major problem in DNS as originally specified in RFC 1035 is that it does not offer any form of security and it is vulnerable to spoofing, man-in-the-middle and cache poisoning attacks. This kind of attacks can compromise all communications to the host that initiate any connection that requires a...
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
The World Academic Publishing Co., Limited
2012
|
| Subjects: | |
| Online Access: | http://irep.iium.edu.my/28579/ http://irep.iium.edu.my/28579/1/CISME10489-20121228-150736-9988-1323_DNSSEC.pdf |
| _version_ | 1848779988332969984 |
|---|---|
| author | Mantoro, Teddy Ayu, Media Anugerah Bidin, Ahmad Fakhrurrazi Norhanipah, Saiful Azhar |
| author_facet | Mantoro, Teddy Ayu, Media Anugerah Bidin, Ahmad Fakhrurrazi Norhanipah, Saiful Azhar |
| author_sort | Mantoro, Teddy |
| building | IIUM Repository |
| collection | Online Access |
| description | The major problem in DNS as originally specified in RFC 1035 is that it does not offer any form of security and it is vulnerable to spoofing, man-in-the-middle and cache poisoning attacks. This kind of attacks can compromise all communications to the host that initiate any connection that requires address translation. The threats from a certain attack on DNS are common and although several tools or devices have been introduced, it still needs to have a better solution in overcoming the issues. At the same time, there are several factors that preventing a widespread implementation of the DNSSEC, such as security testing, performance evaluation and used functionality testing. This paper proposed a framework and an implementation of DNSSEC on IPv6 environment based on the specifications for iDNSSEC on RFC 4033, 4044 and 4055. This implementation of the DNSSEC framework on IPv6 environment provides origin authentication of DNS data, data integrity, and authenticated denial of existence to protect the internet infrastructure further from malicious attacks. The prototype functionality and security testing and the performance evaluation are also presented in this paper. |
| first_indexed | 2025-11-14T15:26:31Z |
| format | Article |
| id | iium-28579 |
| institution | International Islamic University Malaysia |
| institution_category | Local University |
| language | English |
| last_indexed | 2025-11-14T15:26:31Z |
| publishDate | 2012 |
| publisher | The World Academic Publishing Co., Limited |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | iium-285792013-02-13T11:51:13Z http://irep.iium.edu.my/28579/ Framework for Domain Name System Security Extensions (DNSSEC) to support the IPv6 infrastructure Mantoro, Teddy Ayu, Media Anugerah Bidin, Ahmad Fakhrurrazi Norhanipah, Saiful Azhar T Technology (General) The major problem in DNS as originally specified in RFC 1035 is that it does not offer any form of security and it is vulnerable to spoofing, man-in-the-middle and cache poisoning attacks. This kind of attacks can compromise all communications to the host that initiate any connection that requires address translation. The threats from a certain attack on DNS are common and although several tools or devices have been introduced, it still needs to have a better solution in overcoming the issues. At the same time, there are several factors that preventing a widespread implementation of the DNSSEC, such as security testing, performance evaluation and used functionality testing. This paper proposed a framework and an implementation of DNSSEC on IPv6 environment based on the specifications for iDNSSEC on RFC 4033, 4044 and 4055. This implementation of the DNSSEC framework on IPv6 environment provides origin authentication of DNS data, data integrity, and authenticated denial of existence to protect the internet infrastructure further from malicious attacks. The prototype functionality and security testing and the performance evaluation are also presented in this paper. The World Academic Publishing Co., Limited 2012-12 Article PeerReviewed application/pdf en http://irep.iium.edu.my/28579/1/CISME10489-20121228-150736-9988-1323_DNSSEC.pdf Mantoro, Teddy and Ayu, Media Anugerah and Bidin, Ahmad Fakhrurrazi and Norhanipah, Saiful Azhar (2012) Framework for Domain Name System Security Extensions (DNSSEC) to support the IPv6 infrastructure. Communications in Information Science and Management Engineering, 2 (12). pp. 64-70. ISSN 2222-1859 (Print) 2224-7785 (Online) http://www.jcisme.org/ |
| spellingShingle | T Technology (General) Mantoro, Teddy Ayu, Media Anugerah Bidin, Ahmad Fakhrurrazi Norhanipah, Saiful Azhar Framework for Domain Name System Security Extensions (DNSSEC) to support the IPv6 infrastructure |
| title | Framework for Domain Name System Security Extensions (DNSSEC) to support the IPv6 infrastructure |
| title_full | Framework for Domain Name System Security Extensions (DNSSEC) to support the IPv6 infrastructure |
| title_fullStr | Framework for Domain Name System Security Extensions (DNSSEC) to support the IPv6 infrastructure |
| title_full_unstemmed | Framework for Domain Name System Security Extensions (DNSSEC) to support the IPv6 infrastructure |
| title_short | Framework for Domain Name System Security Extensions (DNSSEC) to support the IPv6 infrastructure |
| title_sort | framework for domain name system security extensions (dnssec) to support the ipv6 infrastructure |
| topic | T Technology (General) |
| url | http://irep.iium.edu.my/28579/ http://irep.iium.edu.my/28579/ http://irep.iium.edu.my/28579/1/CISME10489-20121228-150736-9988-1323_DNSSEC.pdf |