IRONSIDES: DNS With No Single Packet Denial of Service or Remote Code Execution Vulnerabilities

Abstract

We describe the development or IRONSIDES, an implementation of DNS that is provably invulnerable to remote code execution exploits and single-packet denial of service attacks. Our experimental results show it to be over three times as fast as BIND, the most common implementation of DNS.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Feb 27, 2012
Accession Number
AD1029765

Entities

People

  • Barry Fagin
  • Martin Carlisle

Organizations

  • United States Air Force Academy

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Algorithms
  • Compilers
  • Computer Program Documentation
  • Computer Program Reliability
  • Computer Programming
  • Computer Programs
  • Computer Science
  • Computers
  • Cybersecurity
  • Denial Of Service Attack
  • Engineering
  • High Level Languages
  • Internet
  • Operating Systems
  • Software Design
  • Software Development
  • Tablet Computers

Fields of Study

  • Computer science

Readers

  • Computer Networking
  • Cybersecurity.