Chinese Journal of Network and Information Security ›› 2021, Vol. 7 ›› Issue (6): 167-177.doi: 10.11959/j.issn.2096-109x.2021093

• Papers • Previous Articles    

Preventing man-in-the-middle attacks in DNS through certificate less signature

Yang HU1,2, Zengjie HAN1,2, Guohua YE1,2, Zhiqiang YAO1,2,3   

  1. 1 College of Computer and Cyber Security, Fujian Normal University, Fuzhou 350117, China
    2 Fujian Engineering Research Center of Public Service Big Data Mining and Application, Fuzhou 350108, China
    3 Engineering Research Center for ICH Digitalization and Multi-Source Information Fusion, Fuqing 350300, China
  • Revised:2021-10-12 Online:2021-12-01 Published:2021-12-01
  • Supported by:
    The National Natural Science Foundation of China(61872090);The National Natural Science Foundation of China(61972096);The Guiding Science and Technology Planning Project of Fujian(2019H0010);The Foundation of Engineering Research Center for ICH Digitalization and Multi-Source Information Fusion(FJ-ICH201901)


Aiming at resisting the man-in-the-middle attacks in the domain name system protocol, a lightweight solution was proposed.The scheme introduced certificate less signature algorithm, removed the difficult-to-deploy trust chain to improve the efficiency and security of authentication.By using symmetric encryption technology, the proposed solution ensured the confidentiality of the message and increase the attack difficulty.The theoretical analysis proved the proposed scheme can resist common man-in-the-middle attacks.Experimental comparison results show the scheme has better performance than similar schemes.

Key words: domain name system, man-in-the-middle attacks, certificate less signature

CLC Number: 

No Suggested Reading articles found!