EN
EN DE
EN
EN DE
Contact Us
Sign Up
Topics
Finance & insurance
Trade
Industry
IT & Consulting
Tourism
Transport
Law
Public

KeyTrap: Serious Vulnerability in the Internet Infrastructure

0
Share:

ATHENE-researchers have uncovered a critical flaw in the design of DNSSEC, the security extension to the Domain Name System (DNS) (DNS Security Extensions) which introduces a vulnerability in all DNS (Domain Name System) implementations and are helping vendors and service providers to fix it. Without correction, the flaw could have serious implications for DNSSEC-validating implementations and public DNS providers such as Google and Cloudflare. Led by Prof. Dr. Haya Schulmann of Goethe University Frankfurt, the ATHENE team has developed a new class of attack called “KeyTrap” that shows how hackers could exploit the design flaw: With just a single DNS packet, hackers could paralyze all common DNS implementations and public DNS providers. Exploiting this attack would have serious consequences for any application that uses the internet, including the unavailability of technologies such as web browsers, email and instant messaging. This devastating effect prompted major DNS vendors to call KeyTrap “The worst attack on DNS ever discovered”. ATHENE-researchers have been working with vendors and DNS providers to develop specific patches to close the vulnerability. It is highly recommended for all providers of DNS services to apply these patches immediately to mitigate this critical vulnerability.

The attack vectors exploited in the KeyTrap class of attacks are registered in the Common Vulnerabilities and Exposures (CVE) database as an umbrella CVE-2023-50387.

Discovering and fixing of this design flaw in DNSSEC is a good example of the importance of cybersecurity research in helping to proactively prevent cyberattacks and improve security. ATHENE’s work has already uncovered several serious security vulnerabilities on the internet, helping to improve security for the benefit of millions of users in Germany and around the world.

Go to our press release

Technical Report

The technical background is summarized in this report: Report (PDF, 1,2 MB)

The final version of this report will be presented at the ACM Conference on Computer and Communications Security (ACM CCS), Salt Lake City, October 14-18, 2024, under the title “The Harder You Try, The Harder You Fail: The KeyTrap Denial-of-Service Algorithmic Complexity Attacks on DNSSEC”.

What is the KeyTrap vulnerability?

Who is affected?

What is the impact of KeyTrap?

What do I need to do?

What does this mean for the future of DNSSEC?

Does KeyTrap allow circumvention of DNSSEC cryptographic protection?

How was KeyTrap mitigated?

Who discovered the vulnerability?

Source

Leave a Comment

Your email address will not be published. Required fields are marked *

loader-image
London, GB
10:03 pm, Apr 22, 2025
weather icon 11°C
L: 9° | H: 12°
broken clouds
Humidity: 73 %
Pressure: 1016 mb
Wind: 8 mph SSW
Wind Gust: 0 mph
UV Index: 0
Precipitation: 0 mm
Clouds: 68%
Rain Chance: 0%
Visibility: 10 km
Sunrise: 5:49 am
Sunset: 8:07 pm
DailyHourly
Daily ForecastHourly Forecast
Tomorrow 10:00 pm
weather icon
9° | 12°°C 1 mm 100% 13 mph 93 % 1018 mb 0 mm/h
Thu Apr 24 10:00 pm
weather icon
7° | 16°°C 0.2 mm 20% 6 mph 85 % 1023 mb 0 mm/h
Fri Apr 25 10:00 pm
weather icon
8° | 17°°C 0 mm 0% 9 mph 84 % 1024 mb 0 mm/h
Sat Apr 26 10:00 pm
weather icon
9° | 16°°C 0.99 mm 99% 6 mph 89 % 1024 mb 0 mm/h
Sun Apr 27 10:00 pm
weather icon
9° | 19°°C 0 mm 0% 8 mph 96 % 1025 mb 0 mm/h
Tomorrow 1:00 am
weather icon
10° | 11°°C 0 mm 0% 7 mph 75 % 1015 mb 0 mm/h
Tomorrow 4:00 am
weather icon
8° | 9°°C 1 mm 100% 9 mph 88 % 1012 mb 0 mm/h
Tomorrow 7:00 am
weather icon
8° | 8°°C 1 mm 100% 13 mph 93 % 1009 mb 0 mm/h
Tomorrow 10:00 am
weather icon
10° | 10°°C 1 mm 100% 10 mph 93 % 1010 mb 0 mm/h
Tomorrow 1:00 pm
weather icon
11° | 11°°C 0.8 mm 80% 9 mph 84 % 1012 mb 0 mm/h
Tomorrow 4:00 pm
weather icon
11° | 11°°C 0.2 mm 20% 11 mph 72 % 1013 mb 0 mm/h
Tomorrow 7:00 pm
weather icon
11° | 11°°C 0 mm 0% 7 mph 73 % 1015 mb 0 mm/h
Tomorrow 10:00 pm
weather icon
9° | 9°°C 0 mm 0% 3 mph 89 % 1018 mb 0 mm/h
Weather from OpenWeatherMap
Name Price24H (%)
Bitcoin(BTC)
€79,395.22
4.55%
Ethereum(ETH)
€1,479.47
7.91%
Tether(USDT)
€0.87
0.04%
XRP(XRP)
€1.88
3.65%
Solana(SOL)
€125.73
5.46%
USDC(USDC)
€0.87
-0.01%
Dogecoin(DOGE)
€0.150116
9.09%
Shiba Inu(SHIB)
€0.000011
7.58%
Pepe(PEPE)
€0.000007
9.02%
Risikomonitor
Know and monitor IT vulnerabilities with just one click before it is too late.

Utility link

Useful link

Newsletter

Follow Us

Facebook Twitter Youtube Linkedin

© 2025 risikomonitor.com gmbh

Scroll to Top