5 DNS Security Extensions DNSSEC

Size: px

Start display at page:

Download "5 DNS Security Extensions DNSSEC"

Julie O’Connor’
6 years ago
Views:

1 Information Security 1 (InfSi1) 5 DNS Security Extensions DNSSEC Prof. Dr. Andreas Steffen Institute for Internet Technologies and Applications (ITA) Andreas Steffen, , 5-DNSSEC.pptx 1

2 Information Security 1 (InfSi1) 5.1 Kaminsky Attack on the Domain Name Service Andreas Steffen, , 5-DNSSEC.pptx 2

3 DNS Resolution via Recursive Nameserver Andreas Steffen, , 5-DNSSEC.pptx 3

4 DNS Request Andreas Steffen, , 5-DNSSEC.pptx 4

5 DNS Response Andreas Steffen, , 5-DNSSEC.pptx 5

6 Simple DNS Cache Poisoning Andreas Steffen, , 5-DNSSEC.pptx 6

7 Guessing Query ID and UDP Source Port Andreas Steffen, , 5-DNSSEC.pptx 7

8 The Dan Kaminsky DNS Vulnerability July 2008 Andreas Steffen, , 5-DNSSEC.pptx 8

9 Information Security 1 (InfSi1) 5.2 DNS Root Servers Andreas Steffen, , 5-DNSSEC.pptx 9

10 DNS Root Servers IPv4 IPv6 Operator # A :503:BA3E::2:30 VeriSign Inc. 8 B :478:65::53 Information Sciences Institute, USC 1 C Cogent Communications 8 D :500:2D::D University of Maryland 2 E NASA Ames Research Center 12 F :500:2F::F Internet Systems Consortium Inc. 56 G US DoD Network Information Center 6 H :500:1::803F:235 US Army Research Lab 2 I :7FE::53 Netnod 43 J :503:C27::2:30 VeriSign Inc. 69 K :7FD::1 RIPE NCC 17 L :500:3::42 ICANN 146 M :DC3::35 WIDE Project 6 Total number of servers: 376 Andreas Steffen, , 5-DNSSEC.pptx 10

11 Global Map of Root Servers Andreas Steffen, , 5-DNSSEC.pptx 11

12 Information Security 1 (InfSi1) 5.3 DNS Security Resource Records Andreas Steffen, , 5-DNSSEC.pptx 12

13 DNSSEC Chain of Trust root ch. switch.ch. * root DNSKEY () root DNSKEY () / ch. DS ch. DNSKEY () ch. DNSKEY () switch.ch. DS / * explicit import e.g. via trusted web site switch.ch. DNSKEY () switch.ch. DNSKEY () / switch.ch. NS ns1/ns2 A x.x.x.x Andreas Steffen, , 5-DNSSEC.pptx 13

14 DNSSEC Resource Records I - DNSKEY DNSKEY - DNS Public Key Contains a public key used to sign the RRsets of a zone switch.ch IN DNSKEY AwEAAeCDWwjJO4mXBzayiKf4p7waJ7Ew eunstsawkxpfelci4iavdbugzypfszig 9R6TIPky3LoPAPmIjCc2fbFkKnrGI7hJ jxagmrwrjibprfx4bxzssjsvgb6mgc+e xhslxw== ;{id = (zsk), size = 768b} Flags field 256 -> Zone Signing Key () 257 -> Key Signing Key () with secure entry point (SEP) flag set Algorithm field 5 -> SHA-1 with RSA 7 -> SHA-1 with RSA & NSEC3 with SHA-1 8 -> SHA-256 with RSA 10 -> SHA-512 with RSA Andreas Steffen, , 5-DNSSEC.pptx 14

15 DNSSEC Resource Records II - RRSIG RRSIG - Resource Record Signature Contains a public key signature over a resource record set (RRset) merapi.switch.ch IN A merapi.switch.ch IN RRSIG A switch.ch. 3KW9YjxdL08FqVYKFSn9 Q4+8U1iYrVCun+J1Ny8Y IiMC+6oQS/GZwRn2mr+H MruwEjNB9s7bWGzRmRiR TATPvS67gxjCiJkSP58P kgj1dw3wbaz6r1fegnvz KhHLhvRe ;{id = 64608} Signature Expiration and Inception Fields The signature is not valid before Inception and after Expiration date. Key Tag Field Contains the key tag of the key which signed the RRset. Andreas Steffen, , 5-DNSSEC.pptx 15

16 DNSSEC Resource Records III - DS DS - Delegation Signer Signed hash computed over of child zone switch.ch IN DS dcfca519cf8b cc switch.ch IN DS cef df83311a92b48ae7f19 1ae e38b1ab7b3d0966b9ee55 switch.ch IN RRSIG DS ch. LPh8RgXQSqPcdQz6s1PJOjTuopO9RxQg s1yycy/cnhyahxb6ndnbj7qp20ekn+91 /ULjN4Ep/k9Pgtos979i5OfEXpfLcWcv rkp1xgvqw4pjp+mt1pds6ukiseuqgboq p7+nkkzjy+ysdbxttv+/8uhcsnnmxomm SqPms3G0aw4= ;{id = 31034} Andreas Steffen, , 5-DNSSEC.pptx 16

17 DNSSEC Resource Records IV - NSEC NSEC Next Owner Name Authenticated denial of existence of an owner name merapi.switch.ch. 180 IN NSEC mercury.switch.ch. A PTR AAAA LOC RRSIG NSEC merapi.switch.ch. 180 IN RRSIG NSEC switch.ch. kw1snxwojkwoheg1p3ini83eoguq GujwvBT/MSWVQ+ms/2DXxjQcpt1Z P07+XI51cc0t7erUUG31KZdmUpXZ tqzpujh49jjlh9atjrih1xghlxv5 af+n95jdykrgsoaq ;{id = 64608} Proof that there is no name between merapi.switch.ch. and mercury.switch.ch. Allows enumeration of complete zone data!!! Andreas Steffen, , 5-DNSSEC.pptx 17

18 DNSSEC Resource Records V - NSEC3 NSEC3 Next Owner Name in Hashed Order Hashed Authenticated Denial of Existence h9p7u7tr2u91d0v0ljs9l1gidnp90u3h.org. 691 IN NSEC d399eaab h9rsfb7fpf2l8hg35cmpc765tdk23rp6 NS SOA RRSIG DNSKEY NSEC3PARAM ; flags: optout h9p7u7tr2u91d0v0ljs9l1gidnp90u3h.org. 691 IN RRSIG NSEC org. a+cc37hrm7ycfbazn2sergy9h247gxptcubyf45twaor xvbwtaxpt+uwz/4hxwc2v7ar7zz8uominjvysl59efw8 Xtgws4/Aih0fJ2/O8yUHwI695fRf9PrpxXEpqzStjSZP 5arJ1oldDAHcnxgLqdAMW6wnK1FNrslfJblJlmU= ;{id = 5273} Proof that there is no name between org. and???.org. Does not allow straight enumeration of zone data! Dictionary attacks are possible but expensive. Andreas Steffen, , 5-DNSSEC.pptx 18

19 Information Security 1 (InfSi1) 5.4 DANE Andreas Steffen, , 5-DNSSEC.pptx 19

20 DNS-based Authentication of Named Entities DANE (RFC 6698, August 2012) DANE defines a TLSA Resource Record Cert. Usage Selector Matching Type Certificate Association Data Certificate Usage 0 CA Certificate Constraint 1 Server Certificate Constraint 2 Trust Anchor Assertion for Private CA 3 Domain Issued Certificate Selector 0 Full Certificate 1 Public Key Info (Public Key plus Key Type Information) Matching Type 0 Exact Match on Selected Content 1 SHA-256 Hash of Selected Content 2 SHA-512 Hash of Selected Content Andreas Steffen, , 5-DNSSEC.pptx 20

21 DANE Verifying Server and CA Certificates TLS Server private key DNS Server hsr.ch Kool CA check server certificate TLSA SHA-256 Hash TLS Client Kool CA Kool CA or check CA certificate TLSA SHA-512 Hash Andreas Steffen, , 5-DNSSEC.pptx 21

22 DANE Getting CA Certificate or Public Key TLS Server private key DNS Server hsr.ch HSR CA TLS Client get CA certificate or get CA public key TLSA HSR CA HSR CA TLSA Andreas Steffen, , 5-DNSSEC.pptx 22

23 DANE Verifying Self-Signed Server Certificates TLS Server private key DNS Server hsr.ch Self check server certificate TLSA SHA-256 Hash TLS Client Andreas Steffen, , 5-DNSSEC.pptx 23

DANE Verifying Raw RSA Keys TLS Server www.hsr.ch private key DNS Server hsr.

24 DANE Verifying Raw RSA Keys TLS Server private key DNS Server hsr.ch check server public key TLSA SHA-256 Hash TLS Client Andreas Steffen, , 5-DNSSEC.pptx 24

25 DANE Getting Server Certificate or Public Key TLS Server private key DNS Server hsr.ch TLS Client get server certificate or get server public key TLSA Self TLSA Andreas Steffen, , 5-DNSSEC.pptx 25

26 Information Security 1 (InfSi1) 5.5 DNS Root Signing Process Andreas Steffen, , 5-DNSSEC.pptx 26

27 DNSSEC Root Zone Signing Process DS Records TLD Operator ICANN Vetting and Processing DS Records DS Records DS Records DoC NTIA VeriSign Authorization of Changes Editing and Signing of Root Zone Root Root Servers (A,..., M) Andreas Steffen, , 5-DNSSEC.pptx 27

28 DNSSEC Root Zone Signing Key Signing Process Private Key VeriSign Management KSR Key Signing Request ICANN Management Private Key SKR Signed Key Response Published on Web Site Andreas Steffen, , 5-DNSSEC.pptx 28

29 ICANN Key Ceremonies Tier 1 Facility Access Control by Data Center Tier 2 Facility Access Control by Data Center Tier 3 Facility Access Control by Data Center Tier 4 Cage Access Control by Data Center Tier 5 Safe Room Access Control by ICANN Tier 6 Safe #1 Tier 6 Safe #2 Tier 7 HSM Tier 7 Safe Deposit Box Private Keys Key Ceremony Computer Crypto Officers Credentials Andreas Steffen, , 5-DNSSEC.pptx 29

30 ICANN Key Ceremonies Andreas Steffen, , 5-DNSSEC.pptx 30

31 Periodic Key Rollover T-10 T+0 T+10 T+20 T+30 T+40 T+50 T+60 T+70 T+80 T+90 Rollover (every 90 days) post-publish pre-publish pre-publish post-publish Optional Rollover (every 2-5 years or on demand) publish+sign publish+sign publish+sign publish publish+sign publish publish+sign publish publish+sign publish publish+sign publish revoke+sign publish+sign revoke+sign publish+sign publish+sign publish+sign RRSIG Validity Period (10 days + 50% overlap) Andreas Steffen, , 5-DNSSEC.pptx 31

32 DNSSEC Deployment (October 22, 2013) TLDs signed by root zone: 13 gtlds: arpa asia biz cat com edu gov info mil museum net org post 81 cctlds: ac af ag am at be bg br bz ca cc ch cl co cr cx cz de dk eu fi fo fr gi gl gn gr gs hn in io is jp kg ki kr la lb lc li lk lt lu lv me mm mn my na nc nf nl nu nz pl pm pr pt pw re ru sb sc se sh si su sx tf th tm tt tv tw tz ua ug uk us wf yt 8 IDN cctlds: xn--kprw13d xn--kpry57d ( 台湾 Taiwan) xn--mgbx4cd0ab مليسيا) Malaysia) xn--3e0b707e ( 한국 South Korea) xn--o3cw4h (ไทย Thailand) xn-l1acc (мон Mongolia) xn-h2brj9c (भ रत India) xn--p1ai (рф Russia) Signing of major gtlds: net: December 2010 com: March 2011 Andreas Steffen, , 5-DNSSEC.pptx 32

DNSSEC Workshop. Dan York, Internet Society ICANN 53 June 2015

DNSSEC Workshop. Dan York, Internet Society ICANN 53 June 2015 DNSSEC Workshop Dan York, Internet Society ICANN 53 June 2015 First, a word about our host... 2 Program Committee Steve Crocker, Shinkuro, Inc. Mark Elkins, DNS/ZACR Cath Goulding, Nominet Jean Robert