Detect and prevent DNS attacks, protect uptime and reduce infrastructure cost
DNS is critical infrastructure that typically lacks security and is not being monitored or controlled, resulting in abuse by malicious actors.
Cloudmark Security Platform for DNS is a software solution that delivers comprehensive protection of DNS networks, infrastructure and traffic. With the Cloudmark solution for DNS, service providers and enterprises gain deep insight into how DNS elements are being used and misused.
Cloudmark Security Platform for DNS can be implemented as a comprehensive, standalone security solution or as an enhancement to existing security hardware and appliances. It performs real-time application layer behavior and content analysis to predict threats.
Cloudmark Security Platform for DNS delivers:
Today, DNS lacks the security monitoring and threat detection commonly deployed for other services such as email or web.
This makes DNS an increasingly vulnerable and attractive target for malicious actors who use DNS for:
Cloudmark Security Platform for DNS performs real-time behavior analysis and anomaly detection by leveraging Cloudmark’s Global Threat Network. This empowers your organization to detect and block threats in real-time, staying ahead of the criminals.
Internet services are essential to service providers and their customers as well as to enterprises. An outage caused by a DNS-based DDoS attack can result in total loss of Internet service.
Cloudmark Security Platform automatically scans all DNS traffic to protect service providers and enterprises against outages or slowdowns caused by attacks on your DNS infrastructure.
The lack of existing DNS security protection makes it an ideal protocol for data theft. By exfiltrating data over DNS tunnels, malicious actors can easily bypass better-protected protocols such as HTTP, and hide in the DNS traffic stream.
DNS can also be used to create reverse-tunnels, which enable outsiders to access internal network resources, again without being detected by traditional security solutions.
Additionally, DNS traffic is not usually billed on Wi-Fi networks. This enables the use of DNS as an unauthorized tunnel to bypass billing. Even a small (<1%) amount of DNS tunneling can lead to a large (3-4x) increase in the infrastructure required to support DNS, as well as revenue loss on the unbilled traffic.
Unlike appliance-based solutions, Cloudmark Security Platform for DNS is a software solution that can be deployed in fully virtualized or traditional environments.
Cloudmark Security Platform for DNS has the following advantages: