1. DNS/security
| /Google /JBS /ToC /attacks /cross_domain_injections /zooko |
Contents
DNS/セキュリティ をどうぞ。
/JBS https://jbs.live/what-is-dns-security-and-why-is-it-important/
A Survey of DNS Security: Most Vulnerable and Valuable Assets http://www.cs.cornell.edu/people/egs/beehive/dnssurvey.html
Why you should set up secure DNS – and how
Stan Kaminsky February 17, 2023
DNS stands for Domain Name Service.
1.1. CIA
DNS Security Management /ToC
Michael Dooley, Timothy Rooney
ISBN: 978-1-119-32827-8 August 2017 Wiley-IEEE Press 324 Pages
https://www.wiley.com/en-us/DNS+Security+Management-p-9781119328278
NXNSAttack: Recursive DNS Inefficiencies and Vulnerabilities http://www.nxnsattack.com/dns-ns-paper.pdf
The NXNSAttack is more effectivethan the NXDomain attack: i) It reaches an amplifica-tion factor of more than 1620x on the number of packetsexchanged by the recursive resolver. ii) Besides the neg-ative cache, the attack also saturates the ‘NS’ resolvercaches. In an attempt to mitigate the attack impact, we propose enhancements to the recursive resolvers algo-rithm to prevent unnecessary proactive fetches.
Monitor Changes, check redirects and keep an eye on important renewals.
We do that, so you don't have to. https://littlewarden.com/
Even with just a few domains to manage, expiration dates can be missed and this can lead to unexpected downtime.
https://cseweb.ucsd.edu/classes/fa14/cse127-a/lec17.pdfDecember 9, 2014 CSE 127: Computer Security Network Security Kirill Levchenko
December 9, 2014
https://twitter.com/kg4gwa/status/1017399196968726533
DNS is critical; so is keeping it safe.
7 ways to protect your DNS. https://ubm.io/2uqyBfP
22:24 - 2018年7月12日
https://www.darkreading.com/operations/7-ways-to-keep-dns-safe/d/d-id/1332252
7 Ways to Keep DNS Safe A DNS attack can have an outsize impact on the targeted organization - or organizations. Here's how to make hackers' lives much more difficult.