Neustar Research: DNSSEC Reflection Severe DDoS Risk
Neustar, Inc. (NYSE: NSR), a trusted, neutral provider of real-time information services, today published “DNSSEC: How Savvy DDoS Attackers Are Using Our Defenses Against Us a research report that details how Domain Name System Security Extensions (DNSSEC) can be subverted as an amplifier in Distributed-Denial-of-Service (DDoS) attacks. Neustar determined that on average, DNSSEC reflection can transform an 80-byte query into a 2,313-byte response, an amplification factor of nearly 30 times, which can easily cause a network service outage during a DDoS attack, resulting in lost revenue and data breaches.
“DNSSEC emerged as a tool to combat DNS hijacking, but unfortunately, hackers have realized that the complexity of these signatures makes them ideal for overwhelming networks in a DDoS attack,” said Joe Loveless, Director Product Marketing, Security Services, Neustar. “If DNSSEC is not properly secured, it can be exploited, weaponized and ultimately used to create massive DDoS attacks.”
DNSSEC was designed to provide integrity and authentication to DNS, which it accomplishes with complex digital signatures and key exchanges. As a result, when a DNS record is transferred to DNSSEC, an extraordinary amount of additional information is created. Additionally, when issuing the DNS command, “ANY,” the amplified response from DNSSEC is exponentially larger than a normal DNS reply.
Key findings and recommendations from “DNSSEC: How Savvy DDoS Attackers Are Using Our Defenses Against Us” include:
- DNSSEC Vulnerabilities Are Prolific – Neustar examined one industry with 1,349 domains and determined 1,084 of them (80 percent) could be maliciously repurposed as a DDoS attack amplifier (they were signed with DNSSEC and responded to the “ANY” command).
- The Average DNSSEC Amplification Factor is 28.9 – Neustar tested DNSSEC vulnerabilities with an 80-byte query, which returned an average response of 2,313-bytes. The largest amplification response was 17,377-bytes, 217 times greater than the 80-byte query.
- The Anatomy of a DNSSEC Reflection Attack – Neustar illustrates the command and control servers required to run the botnets and scripts that target DNS name servers to execute DNSSEC amplification attacks.
- Best Practices for Mitigation –For organizations that rely on DNSSEC, Neustar recommends ensuring that your DNS provider does not respond to “ANY” queries or has a mechanism in place to identify and prevent misuse.
“Neustar is focused on using connected sciences to connect people, places and things, which is why network security is so imperative,” said Loveless. “As more organizations adopt DNSSEC, it is critically important to understand how to secure it. The time to fix it is now.”
For more information about “DNSSEC: How Savvy DDoS Attackers Are Using Our Defenses Against Us” please visit https://hello.neustar.biz/201608---Security-Services---Trade-Show---Black-Hat_DNSSEC-LP.html.
Every day, the world generates roughly 2.5 quadrillion bits of data. Neustar (NYSE: NSR) isolates certain elements and analyzes, simplifies and edits them to make precise and valuable decisions that drive results. As one of the few companies capable of knowing with certainty who is on the other end of every interaction, we’re trusted by the world’s great brands to make critical decisions some 20 billion times a day. We help marketers send timely and relevant messages to the right people. Because we can authoritatively tell a client exactly who is calling or connecting with them, we make critical real-time responses possible. And the same comprehensive information that enables our clients to direct and manage orders also stops attackers. We know when someone isn’t who they claim to be, which helps stop fraud and denial of service before they’re a problem. Because we’re also an experienced manager of some of the world’s most complex databases, we help clients control their online identity, registering and protecting their domain name, and routing traffic to the correct network address. By linking the most essential information with the people who depend on it, we provide more than 12,000 clients worldwide with decisions—not just data. More information is available at http://www.neustar.biz
Om Business Wire
Business Wire, a Berkshire Hathaway company, is the global leader in multiplatform press release distribution.
Følg saker fra Business Wire
Registrer deg med din epostadresse under for å få de nyeste sakene fra Business Wire på epost fortløpende. Du kan melde deg av når som helst.
Siste saker fra Business Wire
Edgewater Networks Announces Event Sponsorship of BroadSoft Connections 201720.10.2017 21:00 | Pressemelding
Edgewater Networks, Inc., the industry leader in Network Edge Orchestration, announced today that it is an event sponsor of the BroadSoft Connections 2017 user conference, which takes place October 22-25 at the JW Marriott Phoenix Desert Ridge Resort & Spa in Phoenix, AZ. During the event, Edgewater Networks will feature demonstrations of the latest end-to-end network interoperability capabilities, including Zero Touch Provisioning, UC Analytics from the core to the endpoint, SD-WAN optimized for BroadSoft, and much more. Continuing a long-standing partnership with BroadSoft, Edgewater Networks has completed another level of BroadCloud certification, this time for local survivability which is critical for business continuity for SMB and Enterprise customers. BroadSoft’s PacketSmart is available on all EdgeMarc Intelligent Edges. All elements of the Network Edge Orchestration are
More than 70 Companies to Showcase Top Tech at CES Unveiled Paris20.10.2017 15:08 | Pressemelding
The Consumer Technology Association (CTA) today announced that more than 70 exhibitors will showcase their latest innovations at the now sold-out fifth annual CES Unveiled Paris The event will focus on the Internet of Things (IoT), connectivity and smart cities, and draw more than 600 attendees. CES Unveiled Paris will run from 2-7:30 PM on Tuesday, October 24, 2017 at the Palais Brongniart. Regional technology companies, top-tier media outlets, buyers and key industry influencers will come together at CES Unveiled Paris to get a direct look at the latest industry developments. The day kicks off with a CES news conference and CTA market trends presentation. Conference programming is followed by a tabletop exhibition & networking reception. Curated exhibitors will be there to showcase top tech from robotics and audio to smart home and augmented and virtual reality. Notable
Westinghouse Receives Regulatory Approval for Analysis Methodologies20.10.2017 12:15 | Pressemelding
Westinghouse Electric Company today announced that it has received approval from the U.S. Nuclear Regulatory Commission (NRC) for two new important analysis methodologies that will be used to upgrade Westinghouse- and Combustion Engineering-based nuclear steam supply system (NSSS) safety analyses. The approvals granted are for the new FULL SPECTRUMTM Loss of Coolant Accident (FSLOCATM) methodology and the Performance Analysis and Design Model software code update, PAD5. FSLOCA is capable of improved modeling of the transient response in a pressurized water reactor to the full spectrum of LOCA break sizes that could occur, and PAD5 is the next generation of the Westinghouse fuel rod design performance code. “These codes were developed to work in concert with each other to maximize analytical margin for nuclear utilities,” said Michele DeWitt, senior vice preside
Gilead Announces Multiple Scientific Presentations Demonstrating High Cure Rates in Difficult-to-Cure HCV Patients and Improved Long-Term Bone and Renal Safety of Vemlidy® in HBV Patients Switched from Viread®20.10.2017 12:03 | Pressemelding
Gilead Sciences, Inc. (NASDAQ: GILD) today announced results from Phase 2 and Phase 3 studies of its approved medicines for chronic hepatitis C virus (HCV) and hepatitis B virus (HBV) infection, adding to the body of evidence supporting Gilead’s viral hepatitis therapies in diverse patient populations. These and other data from more than 25 abstracts will be presented this week at The Liver Meeting® 2017, which begins today in Washington, D.C. Positive results from studies of Harvoni® (ledipasvir 90mg/sofosbuvir 400mg) in HCV-infected patients with severe renal impairment, Epclusa® (sofosbuvir 400mg/velpatasvir 100mg) in HCV-infected liver transplant recipients and Vosevi® (sofosbuvir 400mg/velpatasvir 100mg/voxilaprevir 100mg) in NS5A-inhibitor experienced HCV-infected patients will be presented during poster sessions on October 21 and October 22. In addition, updated results f
Schlumberger Announces Third-Quarter 2017 Results20.10.2017 11:00 | Pressemelding
Schlumberger Limited (NYSE:SLB) today reported results for the third quarter of 2017. (Stated in millions, except per share amounts) Three Months Ended Change Sept. 30, 2017 Jun. 30, 2017 Sept. 30, 2016 Sequential Year-on-year
SP3H Announces That It Has Obtained a €1.2 Million European Union Grant for Its Intelligent and Clean Vehicle (VIP) Project20.10.2017 10:47 | Pressemelding
SP3H is proud to announce joining the very select circle of the 10 French winners of the H2020 SME Instrument Phase 2 program since 2014. This press release features multimedia. View the full release here: http://www.businesswire.com/news/home/20171020005325/en/ Last summer VIP received the very prestigious SME instrument phase 2 H2020 label in the "transport & smart cities mobility" category. With an overall budget of € 1.7 million, VIP is subsidized by the European Union at a rate of 70% or €1.2 million. The framework contract was officially signed early October. VIP is the pre-industrialization program for Fuelbox sensors, the world's first miniaturized scanner capable of analyzing the quality of fuels on board vehicles. The heart of the program remains closely linked to the reduction of CO2 and pollutant emissions from vehicle
I vårt presserom finner du alle våre siste saker, kontaktpersoner, bilder, dokumenter og annen relevant informasjon om oss.Besøk vårt presserom