Story: Alarm over 'pharming' attacks
Posted by: Scott Rose (Thursday 24 February 2005, 12:46 PM)
Another solution on the horizon is DNS Security (DNSSEC). It is an extension to the DNS to include digital signatures to provide authentication and integrity checks to DNS responses. DNSSEC was designed to prevent cache poisoning attacks, but is not the end-all of security. Sites should still provide certificates.
Currently it is still in draft stage in the IETF, to be published as an RFC soon, but there are several DNS implementations that are DNSSEC aware. See http://www.dnssec.net for more information, or the IETF homepage (http://www.ietf.org/)
Full Talkback thread
Story: Alarm over 'pharming' attacks
-
Another solution on the horizon is DNS Security (D... Scott Rose -
Thank you for your informative article on Pharming... James Hoefer
Back to: Alarm over 'pharming' attacks
