首页    期刊浏览 2024年11月26日 星期二
登录注册

文章基本信息

  • 标题:A Formal Specification of the DNSSEC Model
  • 本地全文:下载
  • 作者:Ezequiel Bazan Eixarch ; Gustavo Betarte ; Carlos Daniel Luna
  • 期刊名称:Electronic Communications of the EASST
  • 电子版ISSN:1863-2122
  • 出版年度:2013
  • 卷号:48
  • 语种:English
  • 出版社:European Association of Software Science and Technology (EASST)
  • 摘要:The Domain Name System Security Extensions (DNSSEC) is a suite of specifications that provide origin authentication and integrity assurance services for DNS data. In particular, DNSSEC was designed to protect resolvers from forged DNS data, such as the one generated by DNS cache poisoning. This article presents a minimalistic specification of a DNSSEC model which provides the grounds needed to formally state and verify security properties concerning the chain of trust of the DNSSEC tree. The model, which has been formalized and verified using the Coq proof assistant, specifies an abstract formulation of the behavior of the protocol and the corresponding security-related events, where security goals, such as the prevention of cache poisoning attacks, can be given a formal treatment.
国家哲学社会科学文献中心版权所有