Thursday, August 6, 19:39
Home security New DNS transport protocol makes security checks harder!

New DNS transport protocol makes security checks harder!

NCSC argues that increased adoption of new DNS transport protocols may make controls security an ineffective organization. The NCSC recommends that organizations select from the proposed DNS resolvers and configure them into administratively controlled devices to prevent potential DNS risks.

DNS transport

The Netherlands National Cybersecurity Center has published a newsletter explaining how the new DNS transport protocols will make DNS tracking more difficult. This results in negative side effects, such as disruption of connectivity.

Google and Mozilla are running concurrent tests DNS-over-HTTPS (DoH) for their browsers.

  • The Google Chrome browser will only upgrade to a provider's DoH server if it appears in a list of approved results, if not go to a list of alternative providers (e.g., Cleanbrowsing, CloudFlare, DNS.SB, Google, OpenDNS, Quad9).
  • Mozilla experiment to enable DoH by default and to set up server DoH Cloudflare instead of your existing DNS provider has already been criticized by network administrators and distribution managers Linux.

DNS transport

To mitigate some of these DNS risks, network administrators are required to decide who DNS resolver it is preferred and regulated in all systems under administrative control.

For devices that are not under their control, administrators should limit network-level risks to certain applications, such as Mozilla Firefox.

To maintain monitoring DNS as an effective measure, it is necessary to make changes to the DNS infrastructure and endpoints. As the NCSC reported, while centralized DNS monitoring in networks has been feasible so far, this centralized approach will continue to reduce efficiency over time.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

SecNews
SecNewshttps://www.secnews.gr
In a world without fences and walls, who needs Gates and Windows

LIVE NEWS

Listening to Twitter hack stopped due to porn!

According to a newspaper, the hearing about the teenage hacker who was responsible for the attack that took place on Twitter, which ...

Colorado paid a ransom of $ 45.000 to hackers

According to Lafayette, Colorado officials, the city's electronic systems were breached and officials were forced to pay a ransom to recover ...

Trump vs Biden: Instagram bug favors Trump!

In Instagram hashtag searches for Democratic candidate Joe Biden, content was promoted in favor of Donald Trump.

LibreOffice 7.0: Comes with new features and improved appearance

LibreOffice is one of the best alternatives to Microsoft Office. In addition to providing ...

Pompeo: "Eliminate Chinese apps from Apple and Google stores"!

US Secretary of State Mike Pompeo on Wednesday called for an extension of the US government's restrictions on Chinese technology, saying that ...

Microsoft brings Android applications to Windows 10!

Microsoft has decided to integrate Android applications into Windows 10 with the new update of the "Your Phone" application.
00:02:12

Nudgebox: From DNA analysis to Covid-19 detection

Nudgebox is the product of a small DNA testing company that a few months ago was trying to gain its place in genetics ...

Twitter: Android error exposes DMs and other user data to hackers!

Twitter announced that it fixed a bug found in the Twitter application for Android, which could allow hackers to ...

Trump: Facebook removes misinformation post about Covid-19

Facebook removes Donald Trump's post claiming that children are "almost immune" to Covid-19.

US: $ 10.000.000 to anyone who identifies election hackers!

A few months before this year's US presidential election to be held in November, the US State Department announced that it will give ...