Login

OARC 43

26–27 Oct 2024
Clarion Congress Hotel Prague
Europe/Prague timezone

OARC Meeting Admin

Long-term Solutions to KeyTrap Vulnerabilities

26 Oct 2024, 12:05
10m
Tycho/Kepler Rooms (Clarion Congress Hotel Prague)

Tycho/Kepler Rooms

Clarion Congress Hotel Prague

Freyova 33 Praha 9 ⁠-⁠ Vysočany 190 00 Česká republika
In-person Panel Main Session Session 2

Speaker

Elias Heftrig (ATHENE, Goethe-Universität Frankfurt)

Description

Due to the criticality of the KeyTrap vulnerabilities the task force assembled to address the issues decided to prefer fast, working fixes over elaborate long-term solutions. In consequence, the short-term mitigations are sufficient to prevent impactful attacks, but their propriety as long-term fixes is limited. In this talk we propose long-term solutions to address DNSSEC validation-based resource exhaustion attacks, which are designed to mitigate the complexity of future DNS opration and protocol development imposed by the current patches.

Talk duration 10 Minutes (+discussion panel time)

Primary authors

Elias Heftrig (ATHENE, Goethe-Universität Frankfurt) Prof. Haya Schulmann (ATHENE, Goethe-Universität Frankfurt) Prof. Michael Waidner (ATHENE, Fraunhofer SIT, TU Darmstadt) Mr Niklas Vogel (ATHENE, Goethe-Universität Frankfurt)

Presentation materials

OARC43_longterm-solutions-to-keytrap.pdf
Powered by Indico v3.3.3