Enhancing the Security of Chain of Trust in DNSSEC

  • Kin-Yeung Wong, Wei-Leung Koo, Kai-Hau Yeung

Abstract

DNSSEC provides origin authentication and data verification. It uses public key cryptography to build an chain of trust between parent and child name servers. There are two pairs of keys are used in DNSSEC, but only one of them, namely, KSK-Public is used to build the chain between name servers. This could cause a failure threat from a single point. That is… (More)

4 Figures and Tables

Topics

  • Presentations referencing similar topics