One of the key findings of this work is that cloud architectures have unique security concerns because of IP scarcity and reuse. We show that, when organizations configure end users and their other services to connect to these addresses, private data can continue to be sent once others control the address. We measured the prevalence of this across managed cloud services, third-party services, and DNS, and also developed some new mitigations based on our measurements.
1 comment
[ 3.0 ms ] story [ 14.8 ms ] threadOne of the key findings of this work is that cloud architectures have unique security concerns because of IP scarcity and reuse. We show that, when organizations configure end users and their other services to connect to these addresses, private data can continue to be sent once others control the address. We measured the prevalence of this across managed cloud services, third-party services, and DNS, and also developed some new mitigations based on our measurements.