1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

DNSSEC: Don’t throw the baby out with the bath water

Discussion in 'Help Net Security' started by RSS, Aug 29, 2016.

  1. RSS

    RSS New Member Member

    A recent report raiseed concerns about the abuse of DNSSEC to conduct DDoS attacks. The article reported that DNSSEC-signed domains can be used to conduct reflected DDoS attacks with large amplification factors (averaging 28.9x in their study) that could potentially cripple victim servers. The report went on to recommend that organizations deploying DNSSEC should configure their DNS servers to prevent this and other types of abuse. While this report presents some useful information about the … More →

    Continue reading...

Share This Page