|
Principal Investigator: Mike Schiffman Project Description: DNS servers across the Internet running BIND are not up to date with security patches and software updates. As a result, a significant fraction of the Internet's DNS servers is vulnerable to compromise, subversion, denial of service, and general misuse. Considering that DNS is one of the cornerstones of the corporate enterprise network, the impact of these vulnerabilities is significant and a successful attack could bring down any online business. The overall goal of the project is to scan the entirety of the Internet's DNS infrastructure for security issues. Project Impact: Visibility into the security posture of the Internet's DNS severs. The project will quantitatively measure the overall security level of worldwide DNS. Recommendations for improvements will be included. Project Details: Several Internet scans will be conducted to gather DNS server versions as well as a variety of other management and extraneous server programs. The data will be collected, correlated and plotted on a map via an IP-geolocation toolkit. The entire project will be written in C, shell, Expect, and M4. It will be constructed such that it will be automated and run automatically and annually. Project Deliverables:
Status: In progress |
Guest