English
Title
Handling and Adressing Security issues: What We Can Do to "Reach Out Properly" and "Do the Right Thing" - "DNS Cash Poisoning Technique" as a case study -
Abstract
When faced with challenges related to securities, the involved parties
will face with tough situation in handling how to tackle and solve them.
Among the challenges, this session will focus in particular on how we should communicate technical information
“properly” and “accurately."
As a case study, we will cover cache poisoning techniques which is re-discussed recently in the DNS community, explain what we’ve done so far, overview of the technique, conditions of successful attacks, risks that operators should be aware and specific mitigation techniques.
We would like to have an open discussion with all participants with regard
to improving how such problems are dealt with, and what further work is necessary to solve the problems.
Presenter
Yasuhiro Morishita (Japan Registry Services Co., Ltd.)
Tomohiro Nakashima (NRI SecureTechnologies, Ltd.)