March 19, 2018
Domain Name System (DNS) is a protocol dictating how computers exchange data on the Internet. It turns a user-friendly domain name into an IP address that computers use to identify each other. DNS protocol is unencrypted by default.
Most security vendors still heavily rely on signature-based detection, such as DNS firewalls and DNS blacklisting. It essentially performs DNS query checks of known bad domains.
In 2-3 years, all DNS traffic will be encrypted. Analyzing DNS traffic will not help to spot and stop malicious activity on the network.
It brings numerous challenges to network operators. They can solve them by implementing security measures powered by Artificial Intelligence.
This white paper discusses why DNS blacklisting is not an effective security control anymore.
Read more about:White Papers
About the Author(s)
You May Also Like