IRONSIDES: DNS With No Single-Packet Denial of Service or Remote Code Execution Vulnerabilities Conference Paper uri icon


  • We describe the development of IRONSIDES, an implementation of DNS that is provably invulnerable to remote code execution exploits and single-packet denial of service attacks. Our experimental results show it to be over three times as fast as BIND, the most common implementation of DNS.

author list (cited authors)

  • Carlisle, M., & Fagin, B.

citation count

  • 2

publication date

  • December 2012