Difference between revisions of "Providing application-level assurance through DNSSEC"

Revision as of 22:44, 16 September 2010 (view source) Mark.bristow (talk | contribs) (Created page with '== The presentation == rightThe base DNS specification has certain security vulnerabilities that, with recent findings, makes it even more trivi…')		Revision as of 05:03, 21 September 2010 (view source) Dallendoug (talk | contribs) (added link header) Newer edit →
Line 1:		Line 1:
		+	[[Image:468x60-banner-2010.gif|link=http://www.owasp.org/index.php?title=OWASP_AppSec_DC_2010]]
		+
		+	[https://guest.cvent.com/EVENTS/Register/IdentityConfirmation.aspx?e=d52c6f5f-d568-4e16-b8e0-b5e2bf87ab3a Registration] | [https://resweb.passkey.com/Resweb.do?mode=welcome_gi_new&groupID=2766908 Hotel] | [http://www.dcconvention.com/ Walter E. Washington Convention Center]
		+	<br>
	== The presentation  ==		== The presentation  ==

---

Revision as of 05:03, 21 September 2010

Registration | Hotel | Walter E. Washington Convention Center

The presentation

The base DNS specification has certain security vulnerabilities that, with recent findings, makes it even more trivial for someone to spoof DNS responses and have the application act upon these responses. In this day and age of cloud based and web-based services it becomes even more important for an application to know that it is reaching its intended destination and to react appropriately to spoofing incidents. With DNSSEC now being actively deployed across various name server installations, now is an opportune time for applications to begin to take advantage of some of the benefits that DNSSEC provides. In this presentation we will focus on the extensions we made to the Firefox browser such that it supports various DNSSEC indicators. We will briefly discuss an API we have developed and the modifications we have made to the application user interface. We do so in order to encourage application developers to consider DNS security implications in their Internet and web applications, and to encourage them to think of even more innovative ways of harnessing the benefits of this technology.

The speaker

Speaker bio will be posted shortly.