Research Article
Enc-DNS-HTTP: Utilising DNS Infrastructure to Secure Web Browsing
Table 3
DNS cache poisoning attack.
| ATT not in LAN; ATT must redirect the traffic to his machine.
ATT opportunity: if local DS does not have , then the request is sent to zone server: |
| | (M1) | : | DNS_Query (ID1, DN); dest. IP = | | (M2) | : | DNS_Query (ID2, DN); dest. IP = |
| | DNS cache poisoning (Until IDi = ID2) |
| | (M3) | : | DNS_Reply (IDi, DN, IPATT); dest. IP = | | (M4) | : | DNS_Reply (ID1, DN, IPATT); dest. IP = IPC |
| | All client HTTP traffic is sent to ATT directly |
| | (M5) | : | HTTP_Request (URL); dest. IP = | | (M6) | : | HTTP_Response (HTML); dest. IP = IPC |
|
|
