Details

Autor(en) / Beteiligte

• Gebhard, Alexander
• Perouli, Debbie

Titel

Poster: Measuring Adoption of SPF, DMARC, and CAA DNS Records with Nonfederal Governments in the United States

Ist Teil von

• 2023 IEEE 31st International Conference on Network Protocols (ICNP), 2023, p.1-2

Ort / Verlag

IEEE

Erscheinungsjahr

2023

Link zum Volltext

• IEEE_Xplore

Quelle

IEL

Beschreibungen/Notizen

• Governments provide critical services to the residents they serve such as voting information, taxes, and health services. In turn, residents must trust information coming from their governments is legitimate. This paper examines the adoption of three DNS records, Sender Policy Framework (SPF), Domain-based Message Authentication, Reporting and Conformance (DMARC), and Certificate Authority Authorization (CAA), with governments in the United States. All three DNS records help establish legitimacy in a server's identity. From February to July 2023, SPF, DMARC, and CAA records from domains belonging to governments in the U.S. were collected, parsed, and semantically analyzed for security misconfigurations. We have developed an open source parser and analyzer to verify the syntax and security configuration of SPF and DMARC records. We found that adoption of all three records is slowly increasing, however errors and misconfigurations are disproportionately found in local, county, and state government domains.