Inferring the Deployment of Inbound Source Address Validation Using DNS Resolvers

None, None; None, None; None, None; None, None; None, None; None, None

Inferring the Deployment of Inbound Source Address Validation Using DNS Resolvers

Conference Paper (2020)

Author(s)

Maciej Korczyński (Université Grenoble Alpes)

Yevheniya Nosyk (Université Grenoble Alpes)

Qasim Lone (TU Delft - Organisation & Governance)

Marcin Skwarek (Université Grenoble Alpes)

Baptiste Jonglez (Université Grenoble Alpes)

Andrzej Duda (Université Grenoble Alpes)

Research Group

Organisation & Governance

DOI related publication

https://doi.org/10.1145/3404868.3406668

To reference this document use:

https://resolver.tudelft.nl/uuid:c4e656f1-b944-46a9-882d-f0ffebe1fa02

More Info

expand_more

Publication Year

2020

Language

English

Research Group

Organisation & Governance

Pages (from-to)

9-11

ISBN (electronic)

9781450380393

Abstract

This paper reports on the first Internet-wide active measurement study to enumerate networks not filtering incoming packets based on their source address. Our method identifies closed and open DNS resolvers handling requests from the outside of the network with the source address in the prefix of the tested network. The study gives the most complete picture of the inbound Source Address Validation deployment at network providers: 32,673 IPv4 ASes and 197,641 IPv4 BGP prefixes are vulnerable to spoofing of inbound traffic.

No files available

Metadata only record. There are no files for this record.