Authors

Maciej Korczynski

Based in France

0

Articles

0

Likes on articles

About the author

Maciej Korczynski is an associate professor at Grenoble Alpes University in France. His main research interests include Internet-wide passive and active security measurements, incident data analysis, vulnerability noti cations, the economics of cybersecurity, and security of Internet protocols, in particular DNS.

Links & Social

Website: https://mkorczynski.com

Extended DNS Errors: Unlocking the Full Potential of DNS Troubleshooting

Extended DNS Errors: Unlocking the Full Potential of DNS Troubleshooting

7 min read

The Domain Name System (DNS) has traditionally relied on response codes to signal anomalies, but they are of little help to precisely identify the root causes behind failures. In this article, we examine the new Extended DNS Errors (EDE) mechanism that provides extra feedback on DNS resolutions.

Article tags:

26 You have liked this article 0 times.
1
SAV: Why Is Source Address Validation Still a Problem?

SAV: Why Is Source Address Validation Still a Problem?

13 min read

Despite being a known vulnerability for at least 25 years, source IP address spoofing remains a popular attack method for redirection, amplification and anonymity. Preventing these attacks requires that operators implement Source Address Validation (SAV) to ensure their networks filter packets with…

Article tags:

34 You have liked this article 0 times.
3
Intercept and Inject: DNS Response Manipulation in the Wild

Intercept and Inject: DNS Response Manipulation in the Wild

6 min read

In November 2021, Internet users from Mexico lost access to whatsapp.net and facebook.com. By the time the event was reported, the underlying problem had already gone unnoticed for quite some time. Here, we present key takeaways from our analysis of the event - carried out with RIPE Atlas - and we …

Article tags:

40 You have liked this article 0 times.
0
Inferring the Deployment of Inbound Source Address Validation Using DNS Resolvers

Inferring the Deployment of Inbound Source Address Validation Using DNS Resolvers

6 min read

Source Address Validation (SAV) is the best current practice (BCP 38/RFC 2827) aimed at filtering packets based on source IP addresses at the network edge. In this article, we show how to identify networks that do not deploy SAV for incoming traffic.

Article tags:

0 You have liked this article 0 times.
1

Showing 4 article(s)

Previous
1
Next