DNS hijacking without exploration

《DNS hijacking without exploration》由会员上传分享，免费在线阅读，更多相关内容在学术论文-天天文库。

1、'!Bitsquatting!DNS$Hijacking$without$Exploitation$$$$$$$$$$$$$$'''''''''''''''''''Artem&Dinaburg&(artem.dinaburg@raytheon.com,&artem@dinaburg.org)&Raytheon&Company&July,&2011&Cleared'for'public'release.'Reference'#20117307'Copyright'©'2011'Raytheon'Company.'All'rights'reserved.''1Introduction+'Com

2、puter'hardware,'especially'RAM,'can'suffer'from'random'errors'that'manifest'as'corruption'of'one'or'more'bits.'The'causes'of'these'errors'range'from'manufacturing'defects'to'environmental'factors'such'as'cosmic'rays'and'overheating.'While'the'probability'of'a'single'error'is'small,'the'total'error

3、'amount'in'all'RAM'connected'to'the'Internet'is'significant.'Malicious'attackers'can'exploit'these'random'errors'remotely.''This'paper'presents'an'attack'called'bitsquatting'that'leverages'random'errors'and'DNS'to'direct'Internet'traffic'to'attacker7controlled'destinations.'To'prove'the'feasibilit

4、y'of'bitsquatting,'several'frequently'resolved'domains'were'bitsquatted'and'all'HTTP'requests'to'the'subsequent'domains'were'logged.'An'analysis'of'six'months'of'log'data'reveals'that'virtually'every'operating'system'and'platform'is'affected.'Fortunately,'bitsquatting'attacks'are'easy'to'mitigate.

5、''The'rest'of'this'paper'is'as'follows:'Section'2'discusses'computer'hardware'errors,'the'causes'of'those'errors,'and'measured'error'rates.'Previous'use'of'bit'errors'to'defeat'security'mechanisms'is'reviewed'in'Section'3.'The'bitsquatting'attack,'intuition'behind'it,'and'the'experiment'design'is'

6、described'in'Section'4.'Six'months'of'bitsquatting'logs'from'the'experiment'are'analyzed'in'Section'5.'Effective'mitigations'and'countermeasures'against'bitsquatting'attacks'are'presented'in'Section'6.'2Computer+Hardware+Errors+'Software'writers'implicitly'assume'computer'hardware'and'other'electr

7、onic'components'operate'correctly.'This'assumption'is'not'always'true.'Computer'hardware,'including'various'information'transmission'and'storage'media,'does'experience'errors.'One'possible'hardware'error'is'a'bit