Fighting Phishing by Roger A. Grimes & John N. Just

Author:Roger A. Grimes & John N. Just [Grimes, Roger A. & Just, John N.]
Language: eng
Format: epub
ISBN: 9781394249213
Publisher: Wiley
Published: 2024-01-13T00:00:00+00:00

DNSSEC DNS was created in 1985 and was probably the essential translation service (domain name to IP addresses) that allowed the Internet to become the Internet. Without it (or something like it), we would all have to remember and type in IP addresses to go to our favorite websites. Unfortunately, it was not created with security in mind and has been a frequent target of hackers and scammers over the decades.

All organizational networks should enable DNSSEC (Domain Name System Security Extensions) to prevent malicious domain spoofing. DNSSEC has been around for two decades. It uses asymmetric keys and digital signatures to sign and authenticate DNS responses from “authoritative” DNS servers. DNSSEC makes it harder for a scammer to do domain spoofing or “poisoning.” Without protections against DNS spoofing or poisoning, a potential victim can click on a URL that looks like a valid, well-known, domain and end up on a fraudulent website. DNSSEC is an open standard way to prevent those types of DNS scams.

Unfortunately, DNSSEC is not super popular among admins who set up DNS servers and is not super easy to learn and set up. For that reason, most DNS servers/services do not have DNSSEC enabled. But every organization should.

Download

Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.