The security of Domain Name Server (DNS) infrastructure has never been more critical for service providers and enterprise customers. Subscribers and customers are increasingly aware and concerned about privacy of their on-line communications. Now, with the global pandemic, malicious actors are weaponizing Covid19 and attacking vulnerable consumers and workers at home and disrupting critical services, with a wide range of attacks vectors, including DNS. The urgency of protecting subscribers and remote workers has become a top concern.
DNS query – the request between the DNS client and the local DNS server that provides the internet address - is transmitted in clear text, that is, unencrypted and is especially vulnerable to attack and invasion of user privacy.
DNS over HTTPS (DoH), proposed by the Internet Engineering Task Force (IETF), provides one additional protection of DNS infrastructure. DoH would encrypt the DNS query, providing the subscriber the same encryption protection of HTTPS. Yet, despite growing subscriber concerns and industry support, DoH remains controversial. Many ISPs are apprehensive about its use and how it may impact their business models.
In this webinar, A10 Networks will review the role of DNS, common attack types and the adoption of DoH by the industry. The pros and cons of DoH for ISPs and subscribers will be explored and A10’s DoH solution described and a recent case study. The presentation will conclude with a short demo on DoH on the A10 CFW.