A Revisit of DNS Kaminsky Cache Poisoning Attacks

Kaminsky cache poisoning is arguably the most prominent and dangerous attack to DNS especially when DNSSEC is still on its way to global deployment. This paper investigates the choice space of Kaminsky cache poisoning attackers. Based on the maximum-efficiency attack model, critical parameters as well as their impacts on cache poisoning are thoroughly studied. In theory, Kaminsky cache poisoning attackers can tune those parameters in favor of an optimized success rate. In practice, the implementing schemes of optimizing cache poisoning are studied. Finally, defensive measures against Kaminsky cache poisoning are proposed.