澳门金沙最新官方网址

Increasing internet's "gene pool" could boost security

作者:黎朽    发布时间:2019-03-05 08:01:00    

By Will Knight The internet’s governing body wants to secure the web’s naming system, and one expert says increasing the “genetic diversity” of software used would help improve security. The issue of security was raised by Steve Bellovin, an expert at AT&T labs in the US at a meeting held in California on Tuesday by the Internet Corporation for Assigned Names and Numbers (ICANN). Most domain name servers run on Berkley Internet Name Domain (BIND) software on Unix computer systems. Bellovin said that if one major security hole was uncovered in BIND, it could leave the almost all of the Domain Name System open to attack by hackers. Cambridge University’s John Crowcroft, a member of the Internet Architecture Board, agrees: “If there are bugs in one piece of code, you could kill all of the servers with the same hit.” He says one possible solution is “to have a bit of genetic diversity”. This would mean increasing the variety of operating systems than control the system. But Crowcroft notes that the system does have some resilience already because the DNS information is spread between so many servers worldwide. Domain name software is available for a number of operating systems including Linux, Microsoft operating systems and Sun’s Solaris platform. There are 13 root DNS servers located in different countries around the world. These servers store the master records that map written domain names, such as www.newscientist.com, to their numerical internet protocol addresses, in this case 194.201.29.81. This allows surfers to identify web sites by a name rather than a number. The master servers share the information with thousands of smaller name servers. If the domain name system was attacked by hackers,

 

Copyright © 网站地图