Explore the intricacies of the Domain Name System (DNS) in this 46-minute conference talk from Converge 2015. Delve into DNS operation and security, covering essential topics such as DNS structure, terminology, and domain hierarchy. Learn about potential vulnerabilities like open resolvers, blind transfers, and domain hijacking. Discover how DNS can be exploited for tunneling and gain insights into behavior analysis techniques. Examine solutions like Google DNS, Checkpoint IPS, and DNSSEC to enhance DNS security and protect against common threats.
Overview
Syllabus
Introduction
Why DNS
DNS Structure
DNS Terminology
Domain Structure
DNS Request
Open Resolvers
Why is this bad
How to stop it
Blind Transfers
Domain Hijacking
DNS for Tunneling
DNS Tunneling Example
Behavior Analysis
Google DNS
Checkpoint IPS
DNSSEC