Changes between Version 42 and Version 43 of ExDescLang


Ignore:
Timestamp:
Oct 18, 2010 12:57:40 PM (14 years ago)
Author:
sunshine
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • ExDescLang

    v42 v43  
    106106  [[Image(cpwf.jpg, 50%)]]
    107107
     108  (in English: An attacker sends some query to the cache and adds information about resource=fakeresource. This leads to cache accepting the fake information. Notice that nothing is said about WHY cache chooses to accept this - this is specific to the poisoning flavor.)
     109
    108110 * '''Invariants:'''
     111
     112   Nothing in addition to the topology and timeline above.
     113
     114=== DNS Cache poisoning metadescription ===
     115
     116  This is a special case of cache poisoning where the target is DNS cache. I've highlighted customizations from the general cache poisoning metadescriptions to arrive at this one.
     117
     118   [[Image(dnscpobj.jpg)]]
     119
     120   (in English: There is one attacker node. There is either a fakeIP or fake authority that the attacker wants to inject into the cache, both of type Info. A cache is simply a collection of Info items, one or more. Cache does not reside at the attacker.)
     121
     122
     123 * '''Timeline of events: '''
     124
     125  [[Image(dnswf1.jpg, 50%)]]
     126
     127   (in English: Attacker asks for name.domain - nothing is said if the name is a made up one or real one. Cache then finds the authority for that domain - again nothing is said how. Once found, cache asks the authority for the name.domain and gets a reply. At the same time one of two scenarios can happen. If the name is selected randomly (made-up) then the attacker tries to replace the authority for the domain with some fake authority. Otherwise
     128
     129 * '''Invariants:'''
     130
     131   Nothing in addition to the topology and timeline above.
     132
     133
    109134
    110135= TODO =