<div dir="ltr"><br><br><div class="gmail_quote">---------- Forwarded message ----------<br>From: <b class="gmail_sendername">Treese, Win</b> <span dir="ltr">&lt;<a href="mailto:treese@bu.edu">treese@bu.edu</a>&gt;</span><br>

Date: Wed, Feb 6, 2013 at 2:44 PM<br>Subject: RISCS/Hariri Institute seminar: Amir Herzberg, DNS Poisoning: New Attacks and Defenses - Wednesday, Feb. 13, at the Hariri Institute<br>To: &quot;<a href="mailto:faculty-affiliates@hic.bu.edu">faculty-affiliates@hic.bu.edu</a>&quot; &lt;<a href="mailto:faculty-affiliates@hic.bu.edu">faculty-affiliates@hic.bu.edu</a>&gt;<br>

<br><br>



<div style="word-wrap:break-word">
<div>
<div style="color:rgb(17,17,17);font-family:&#39;Helvetica Neue&#39;,Helvetica,Arial,Verdana,sans-serif;word-wrap:break-word;padding:20px;margin-left:15px;outline:0px;border:0px;font-size:13px;line-height:19px">
<p style="word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
The Center for Reliable Information Systems and Cyber Security, and the Hariri Institute, are pleased to present:</p>
<h2 style="font-size:1.7143em;line-height:1.5em;margin:0.875em 0px">
DNS Poisoning: New Attacks and Defenses</h2>
<p style="word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
Prof. Amir Herzberg<br>
Associate Professor of Computer Science<br>
Bar-Ilan University</p>
<p style="word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
10:00 AM on Wednesday, February 13, 2013<br>
Hariri Institute Conference Room, MCS–180</p>
<p style="word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
<em>Abstract</em></p>
<p style="word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
The Domain Name System (DNS) is key to the operation of the Internet, and its security is critical to prevent a variety of threats. Cryptographic defenses were designed (DNSSEC), but are not widely deployed; instead, multiple challenge-response defenses are
 used. However, we show how attackers may be able to poison in spite of these defenses; specifically:</p>
<ul>
<li style="font-size:14px">Circumvent source port randomisation, in the (common) case where the resolver connects to the Internet via different NAT devices.</li><li style="font-size:14px">Circumvent IP address randomisation, using some (standard-conforming) resolvers. -Circumvent query randomisation, including both randomisation by prepending a random nonce and case randomisation (0x20 encoding).</li>

</ul>
<p style="word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
We present countermeasures preventing our attacks; however, a better conclusion is to adopt good cryptographic security such as DNSSEC. Depending on time, we will present a subset of these results, and, if time allows, we may also discuss the challenges and
 status of DNSSEC deployment.</p>
<p style="word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
Joint work with Haya Shulman.</p>
<p style="word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
<em>Speaker biography</em></p>
<p style="word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
Amir Herzberg is Associate Professor of Computer Science at Bar-Ilan University in Israel. HIs current research areas includes many areas of computer security, particularly network security and applications of cryptography. He received his Ph.D. from the Technion
 in Israel in 1991. Before joining the faculty at Bar-Ilan University in 2002, he worked in research and management with IBM Research and as a CTO of a startup company. He frequently consults for R&amp;D companies as well as the banking, communications, and government
 sectors.</p>
<p style="word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
<b style="display:block;border:none!important"></b><em>Faculty sponsor: Ari Trachtenberg</em></p>
<p style="word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
The Hariri Institute is located at the east end of 111 Cummington Mall in Boston. For map and directions, see
<a href="http://www.bu.edu/hic/directions" target="_blank">www.bu.edu/hic/directions</a></p>
</div>
<div style="color:rgb(200,200,200);font-family:&#39;Helvetica Neue&#39;,Helvetica,Arial,Verdana,sans-serif;word-wrap:break-word;max-height:90%;width:250px;overflow-x:hidden;overflow-y:auto;font-size:1.1em;text-align:left;line-height:1.2em;background-color:rgba(0,0,0,0.792969);padding:10px 30px 20px 20px;border-top-left-radius:10px;border-top-right-radius:10px;border-bottom-right-radius:10px;border-bottom-left-radius:10px;outline:0px;border:0px">


<p style="color:rgb(17,17,17);word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
<span><a style="color:rgb(255,255,255)!important;text-decoration:none;border:none!important;display:block;font-size:14px;font-family:&#39;Helvetica Neue&#39;,Helvetica,Arial,sans-serif;background-image:none!important;background-repeat:initial initial!important"></a></span></p>


<p style="color:rgb(17,17,17);word-wrap:break-word;font-size:1.1429em;line-height:1.3125em;margin:1.3125em 0px">
<a style="color:rgb(255,255,255)!important;text-decoration:none;border:none!important;display:block;font-size:14px;font-family:&#39;Helvetica Neue&#39;,Helvetica,Arial,sans-serif;background-image:none!important;background-repeat:initial initial!important"></a></p>


<ul style="margin-left:10px;padding-left:0px">
<li style="font-size:16px;display:block;list-style:none;margin:10px 0px;background-color:transparent!important;background-repeat:initial initial!important">
<ul style="margin-bottom:0.4em;margin-left:10px;padding-left:0px">
<li style="display:block;list-style:none;margin:10px 0px;background-color:transparent!important">
<a style="color:rgb(255,255,255)!important;text-decoration:none;border:none!important;display:block;font-size:14px;font-family:&#39;Helvetica Neue&#39;,Helvetica,Arial,sans-serif;background-image:none!important;outline:0px;background-repeat:initial initial!important">DNS
 Poisoning: New Attacks and Defenses</a></li></ul>
</li></ul>
</div>
<div><br>
</div>
</div>
</div>

</div><br></div>