Added by on 2017-08-27

Slides Here: https://defcon.org/images/defcon-22/dc-22-presentations/Vixie/DEFCON-22-Paul-Vixie-2014-07-15-botnets.pdf White paper available for download here: https://defcon.org/images/defcon-22/dc-22-presentations/Vixie/DEFCON-22-Paul-Vixie-WP.pdf Domain Name Problems and Solutions Dr. Paul Vixie CEO, FARSIGHT SECURITY Spammers can’t use dotted quads or any other literal IP address, since SpamAssassin won’t let it through, since it looks too much like spam. So, spammers need cheap and plentiful — dare we say ‘too cheap to meter’? — domain names. The DNS industry is only too happy to provide these domain names, cheaply and at massive scale. The end result is that 90% of all domain names are crap, with more on the way. DNS registrars and registries sometimes cooperate with law enforcement and commercial takedown efforts since it results in domains that die sooner thus creating demand for more domains sooner. Spammers and other abusers of the Internet commons sometimes try to keep their domains alive a little longer by changing name server addresses, or changing name server names, many times per day. All of this action and counteraction leaves tracks, and around those tracks, security minded network and server operators can build interesting defenses including DNS RPZ, a firewall that works on DNS names, DNS responses, and DNS metadata; and NOD, a feed of Newly Observed Domains that can be used for brand enforcement, as well as an RPZ that can direct a DNS firewall to treat infant domain names unfairly. Dr. Paul Vixie, long time maintainer of BIND and now CEO of Farsight Security, will explain and demonstrate.” Dr. Paul Vixie is the CEO of Farsight Security. He previously served as President, Chairman and Founder of Internet Systems Consortium (ISC), as President of MAPS, PAIX and MIBH, as CTO of Abovenet/MFN, and on the board of several for-profit and non-profit companies. He served on the ARIN Board of Trustees from 2005 to 2013, and as […]

Leave a Reply

Your email address will not be published. Required fields are marked *

*

 

4 Comments

  • Geoffrey Nicoletti 1 month ago

    I would want Dr. Vixie to speak to a low latency attack launched in a nearby server…nearby to the adversary…similar to the "flash crash" on Wall Street (May 6, 2010) where ms speed requires an unreliable "automatic analysis" of metadata and attribution gets hidden. Does he worry about machine vs. machine launching kinetic destruction of transistors? DARPA recently had 100 rounds of seven machines against each other…Capture-the-Flag…

  • Nicole K 1 month ago

    Entertaining and authoritative.

  • Shrek T 1 month ago

    vix.com not available bruh 12.6.15

  • Ali A 1 month ago

    This guy's voice reminds me of Agent smith from the Matrix