Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor

Infosecurity Adviser opens debate on the threats posed by fast-flux DNS linking

InfoSecurity Europe : 17 March, 2009  (Company News)
Infosecurity Adviser generates a discussion on one of the latest threats to the integrity of the Internet, fast-flux DNS linking.
Infosecurity Adviser is the online community for the information security industry, created by the organisers of Infosecurity Europe.

In a discussion posting, Andrew Yeomans, an ISAF and Infosecurity Europe Advisory Board member, cross-references security guru Bruce Schneier's blog on a Wikileaks article on how child porn is being distributed on the Internet.

'These include the use of fast-flux DNS links to proxy servers used to anonymise connections to the hosting servers which have hidden encrypted partitions,' said Yeomans.

According to Yeomans, from a technical perspective, the process is quite ingenious, since the servers used to distribute the illegal images are effectively sealed from external access, except by IP calls from specific IP addresses and using specific protocols.

Using this approach means that the chances of detection by legal agencies - including those set up to prosecute child pornography offences - are vanishingly small.

Perhaps worse, even if a `member' of an illegal ring accesses the data, they do so in an anonymous fashion - in both directions - which means that the member is unaware of the IP mechanisms being used, let alone the addresses and protocols being used, to download the images.

There is, however, one method by which this awful trade in illegal pictures can be blocked and, said Yeomans, he personally supported the blocking by major Internet service providers - at the DNS level - of host names used by illegal and criminal organisations.

This would also, Yeomans noted, include those host names used by botnets and phishers.

'I believe this would allow a much more rapid response than the current take-down system and would significantly reduce the risk to the UK public,' said Yeomans.
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo