EN
EN DE
EN
EN DE
Contact Us
Sign Up
Topics
Finance & insurance
Trade
Industry
IT & Consulting
Tourism
Transport
Law
Public

KeyTrap: Serious Vulnerability in the Internet Infrastructure

0
Share:

ATHENE-researchers have uncovered a critical flaw in the design of DNSSEC, the security extension to the Domain Name System (DNS) (DNS Security Extensions) which introduces a vulnerability in all DNS (Domain Name System) implementations and are helping vendors and service providers to fix it. Without correction, the flaw could have serious implications for DNSSEC-validating implementations and public DNS providers such as Google and Cloudflare. Led by Prof. Dr. Haya Schulmann of Goethe University Frankfurt, the ATHENE team has developed a new class of attack called “KeyTrap” that shows how hackers could exploit the design flaw: With just a single DNS packet, hackers could paralyze all common DNS implementations and public DNS providers. Exploiting this attack would have serious consequences for any application that uses the internet, including the unavailability of technologies such as web browsers, email and instant messaging. This devastating effect prompted major DNS vendors to call KeyTrap “The worst attack on DNS ever discovered”. ATHENE-researchers have been working with vendors and DNS providers to develop specific patches to close the vulnerability. It is highly recommended for all providers of DNS services to apply these patches immediately to mitigate this critical vulnerability.

The attack vectors exploited in the KeyTrap class of attacks are registered in the Common Vulnerabilities and Exposures (CVE) database as an umbrella CVE-2023-50387.

Discovering and fixing of this design flaw in DNSSEC is a good example of the importance of cybersecurity research in helping to proactively prevent cyberattacks and improve security. ATHENE’s work has already uncovered several serious security vulnerabilities on the internet, helping to improve security for the benefit of millions of users in Germany and around the world.

Go to our press release

Technical Report

The technical background is summarized in this report: Report (PDF, 1,2 MB)

The final version of this report will be presented at the ACM Conference on Computer and Communications Security (ACM CCS), Salt Lake City, October 14-18, 2024, under the title “The Harder You Try, The Harder You Fail: The KeyTrap Denial-of-Service Algorithmic Complexity Attacks on DNSSEC”.

What is the KeyTrap vulnerability?

Who is affected?

What is the impact of KeyTrap?

What do I need to do?

What does this mean for the future of DNSSEC?

Does KeyTrap allow circumvention of DNSSEC cryptographic protection?

How was KeyTrap mitigated?

Who discovered the vulnerability?

Source

Leave a Comment

Your email address will not be published. Required fields are marked *

loader-image
London, GB
3:08 am, Jun 17, 2025
weather icon 16°C
L: 14° | H: 17°
broken clouds
Humidity: 80 %
Pressure: 1026 mb
Wind: 6 mph SW
Wind Gust: 0 mph
UV Index: 0
Precipitation: 0 mm
Clouds: 53%
Rain Chance: 0%
Visibility: 10 km
Sunrise: 4:42 am
Sunset: 9:20 pm
DailyHourly
Daily ForecastHourly Forecast
Today 10:00 pm
weather icon
14° | 17°°C 0 mm 0% 10 mph 80 % 1026 mb 0 mm/h
Tomorrow 10:00 pm
weather icon
15° | 27°°C 0 mm 0% 10 mph 77 % 1026 mb 0 mm/h
Thu Jun 19 10:00 pm
weather icon
17° | 28°°C 0 mm 0% 10 mph 73 % 1027 mb 0 mm/h
Fri Jun 20 10:00 pm
weather icon
16° | 25°°C 0 mm 0% 11 mph 70 % 1027 mb 0 mm/h
Sat Jun 21 10:00 pm
weather icon
16° | 29°°C 0 mm 0% 12 mph 75 % 1024 mb 0 mm/h
Today 4:00 am
weather icon
14° | 16°°C 0 mm 0% 4 mph 80 % 1026 mb 0 mm/h
Today 7:00 am
weather icon
16° | 16°°C 0 mm 0% 6 mph 76 % 1026 mb 0 mm/h
Today 10:00 am
weather icon
20° | 22°°C 0 mm 0% 7 mph 58 % 1026 mb 0 mm/h
Today 1:00 pm
weather icon
25° | 25°°C 0 mm 0% 8 mph 34 % 1025 mb 0 mm/h
Today 4:00 pm
weather icon
27° | 27°°C 0 mm 0% 8 mph 33 % 1024 mb 0 mm/h
Today 7:00 pm
weather icon
25° | 25°°C 0 mm 0% 10 mph 43 % 1024 mb 0 mm/h
Today 10:00 pm
weather icon
20° | 20°°C 0 mm 0% 8 mph 55 % 1025 mb 0 mm/h
Tomorrow 1:00 am
weather icon
17° | 17°°C 0 mm 0% 5 mph 69 % 1025 mb 0 mm/h
Weather from OpenWeatherMap
Name Price24H (%)
Bitcoin(BTC)
€92,763.89
1.31%
Ethereum(ETH)
€2,233.54
0.74%
Tether(USDT)
€0.87
0.02%
XRP(XRP)
€1.95
3.44%
Solana(SOL)
€131.24
-3.01%
USDC(USDC)
€0.87
0.00%
Dogecoin(DOGE)
€0.150947
-0.95%
Shiba Inu(SHIB)
€0.000010
-0.89%
Pepe(PEPE)
€0.000010
-5.10%
Risikomonitor
Know and monitor IT vulnerabilities with just one click before it is too late.

Utility link

Useful link

Newsletter

Follow Us

Facebook Twitter Youtube Linkedin

© 2025 risikomonitor.com gmbh

Scroll to Top