DNS Security Management (IEEE Press Series on Networks and Services Management)

Michael Dooley, Timothy Rooney

  • 出版商: IEEE
  • 出版日期: 2017-08-14
  • 定價: $3,200
  • 售價: 9.0$2,880
  • 語言: 英文
  • 頁數: 324
  • 裝訂: Hardcover
  • ISBN: 1119328276
  • ISBN-13: 9781119328278
  • 相關分類: 資訊安全
  • 立即出貨 (庫存 < 3)

買這商品的人也買了...

商品描述

An advanced Domain Name System (DNS) security resource that explores the operation of DNS, its vulnerabilities, basic security approaches, and mitigation strategies  

DNS Security Management offers an overall role-based security approach and discusses the various threats to the Domain Name Systems (DNS). This vital resource is filled with proven strategies for detecting and mitigating these all too frequent threats. The authors—noted experts on the topic—offer an introduction to the role of DNS and explore the operation of DNS. They cover a myriad of DNS vulnerabilities and include preventative strategies that can be implemented. 

Comprehensive in scope, the text shows how to secure DNS resolution with the Domain Name System Security Extensions (DNSSEC). In addition, the text includes discussions on security applications facility by DNS, such as anti-spam, SPF, DANE and related CERT/SSHFP records. This important resource:

  • Presents security approaches for the various types of DNS deployments by role (e.g., recursive vs. authoritative)
  • Discusses DNS resolvers including host access protections, DHCP configurations and DNS recursive server IPs
  • Examines DNS data collection, data analytics, and detection strategies

With cyber attacks ever on the rise worldwide, DNS Security Management offers network engineers a much-needed resource that provides a clear understanding of the threats to networks in order to mitigate the risks and assess the strategies to defend against threats.

商品描述(中文翻譯)

一本先進的域名系統(DNS)安全資源,探討DNS的運作、其弱點、基本安全方法和緩解策略。

《DNS安全管理》提供了一種整體的基於角色的安全方法,並討論了域名系統(DNS)所面臨的各種威脅。這本重要的資源充滿了檢測和緩解這些頻繁威脅的成熟策略。作者是該領域的知名專家,他們介紹了DNS的角色並探討了DNS的運作。他們涵蓋了眾多的DNS弱點並提供了可實施的預防策略。

這本全面的書籍展示了如何使用域名系統安全擴展(DNSSEC)來保護DNS解析。此外,該書還討論了DNS提供的安全應用,如反垃圾郵件、SPF、DANE和相關的CERT/SSHFP記錄。這本重要的資源:

- 提供了針對不同類型DNS部署(例如遞迴式和權威式)的安全方法
- 討論了DNS解析器,包括主機訪問保護、DHCP配置和DNS遞迴服務器IP
- 檢查了DNS數據收集、數據分析和檢測策略

隨著全球網絡攻擊不斷增加,《DNS安全管理》為網絡工程師提供了一個迫切需要的資源,以清楚了解網絡面臨的威脅,以減輕風險並評估對抗威脅的策略。