论文标题
DNS不安全感的影响时间
The Impact of DNS Insecurity on Time
论文作者
论文摘要
我们演示了第一次实用的分数时间转移对NTP的攻击以及中间人(MITM)安全的计时增强NTP。我们的攻击利用了DNS的不安全感,使我们能够将NTP客户端重定向到攻击者控制的服务器。我们对NTP客户端进行攻击表面的大规模测量,并证明了由于脆弱的DNS而对NTP的威胁。
We demonstrate the first practical off-path time shifting attacks against NTP as well as against Man-in-the-Middle (MitM) secure Chronos-enhanced NTP. Our attacks exploit the insecurity of DNS allowing us to redirect the NTP clients to attacker controlled servers. We perform large scale measurements of the attack surface in NTP clients and demonstrate the threats to NTP due to vulnerable DNS.
