Changes between Version 4 and Version 5 of CachePoisonExample

Timestamp:

Nov 4, 2010 5:16:02 PM (13 years ago)

Author:

sunshine

Comment:

--

CachePoisonExample

@@ -57 +57 @@
   This is a special case of cache poisoning where the target is DNS cache. 
 
-Dimensions:
  * '''Logical topology:''' 
-   [[Image(dnscpobj.jpg)]]
 
-   (in English: There is one attacker node. There is either a fakeIP or fake authority that the attacker wants to inject into the cache. The first is of type IPaddress, the second of type DNSname. Both of these types are subtypes of Info, and this is recorded somewhere in the domain knowledge DB. A cache is simply a collection of DNSRecord items, one or more. These are also subtypes of Info and in the domain knowledge DB there's syntax defined for a DNSRecord. Cache does not reside at the attacker.)
+    Attacker extends Node
+
+    Auth extends Node
+
+    Name extends DNSName
+
+    RealIP extends IPAddress
+
+    FakeIP extends IPAddress or fakeAuth extends DNSName
+
+    victimCache extends Object
+ 
+    victimCache := {DNSRecord[] records}
+
+    authCache extends Object
+
+    authCache := {DNSRecord[] records = {Name=RealIP, auth(domain(Name)) = Auth}
+
+  '''Cardinality:'''
+
+    |Attacker|,,1,,
+
+    |Auth|,,1,,
+
+    |Name|,,1,,
+
+    |FakeIP|,,1,,
+
+    |fakeAuth|,,1,,
+
+    |RealIP|,,1,,
+
+    |victimCache|,,1,,
+
+    |authCache|,,1,,
+
+  '''Relationships:'''
+
+    not collocated(victimCache, Attacker)
+
+    not collocated(victimCache, Auth)
+collocated(AuthCache, Auth)
+