This chapter gives a study on the network services related to infrastructure security. The services covered are Dynamic Host Configuration Protocol (DHCP) and Domain Name System (DNS), as address configuration and naming are ones of the key components in the network infrastructure. The operations, vulnerability and mitigations of them are discussed.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Reference
P. Mockapetris, “Domain Names - Concepts And Facilities,” RFC 1034, November 1987.
P. Mockapetris, “Domain Names - Implementation And Specification,” RFC 1035, November 1987.
P. Vixie, S. Thomson, Y. Rekhter, and J. Bound, “Dynamic Updates in the Domain Name System (DNS UPDATE),” RFC 2136, April 1997.
R. Arends, R. Austein, M. Larson, D. Massey, and S. Rose, “Resource Records for the DNS Security Extensions,” RFC 4034, Mar. 2005.
R. Arends, R. Austein, M. Larson, D. Massey, and S. Rose, “Protocol Modifications for the DNS Security Extensions,” RFC 4035, Mar. 2005.
P. Vixie, O. Gudmundsson, D. Eastlake, and B. Wellington, “Secret Key Transaction Authentication for DNS (TSIG),” RFC 2845, May 2000.
Rik Farrow, “DHCP: Another Untrustworthy Service,” Network Magazine, Apr 5, 2002.
R. Droms, “Dynamic Host Configuration Protocol,” RFC 2131, March 1997.
S. Alexander, “DHCP Options and BOOTP Vendor Extensions,” RFC2132, March 1997.
Ralph Droms, “Automated configuration of TCPIP with DHCP,” IEEE Internet Computing, vol. 3, iss. 4, Jul.-Aug. 1999, pp. 45 – 53.
Jenq-Haur Wang and Tzao-Lin Lee, “Enhanced Intranet Management in a DHCP-enabled Environment,” Proc. 26th Annual International Computer Software and Applications Conference, pp. 26-29, Aug. 2002, pp. 893 – 898.
T. Komori and T. Saito, “The secure DHCP system with user authentication,” Proceedings of the 27th Annual IEEE Conference on Local Computer Networks, 6-8 Nov. 2002, pp. 123 – 131.
Diane Davidowicz and Paul Vixie, “Securing the Domain Name System,” Network Magazine, Jan. 2000, vol. 15, no. 1, pp. 92-97.
Ibrahim Haddad and David Gordon, “The Basics of DNSSEC,” O’Reilly ONLamp.com, http://www.onlamp.com/pub/a/onlamp/2004/10/14/dnssec.html
Ramaswamy Chandramouli and Scott Rose, “Secure Domain Name System (DNS) Deployment Guide,” National Institute of Standards and Technology, Special Publication 800-81, http://csrc.nist.gov/publications/nistpubs/800-81/SP800-81.pdf
R. Arends, R. Austein, M. Larson, D. Massey, and S. Rose, “DNS Security Introduction and Requirements,” RFC 4033, 2005.
Giuseppe Ateniese and Stefan Mangard, “A New Approach to DNS Security (DNSSEC),” In Eighth ACM Conference on Computer and Communications Security (ACM CCS-8), Nov. 2001.
Xunhua Wang, Yih Huang, Y. Desmedt, and D. Rine, “Enabling secure on-line DNS dynamic update,” Proc. 16th Annual Conference on Computer Security Applications (ACSAC'00), Dec. 2000, pp. 52 – 58.
D. Eastlake, “Domain Name System Security Extensions,” RFC 2535, Mar. 1999.
D. Atkins and R. Austein, “Threat Analysis of the Domain Name System (DNS),” RFC 3833, Aug. 2004.
Author information
Authors and Affiliations
Rights and permissions
Copyright information
© 2009 Springer-Verlag US
About this chapter
Cite this chapter
Wong, A., Yeung, A. (2009). Network Infrastructure Security ’ Address Configuration and Naming. In: Network Infrastructure Security. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-0166-8_4
Download citation
DOI: https://doi.org/10.1007/978-1-4419-0166-8_4
Published:
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4419-0165-1
Online ISBN: 978-1-4419-0166-8
eBook Packages: Computer ScienceComputer Science (R0)