Sattrix is trusted partner with TCPWave as a Managed DNS Security provider. We provide Managed DNS security service to protect DNS from various attacks.
2. What is
DNS?
Domain Name Server (DNS) is
a standard protocol that helps
Internet users discover websites
using human readable addresses.
For eg., in mobile phone, when you
look up the name of a person in a
phonebook and find the contact
no., the same thing is applicable
on DNS. Whenever you type the
website address, DNS will
automatically locate the IP
(Internet Protocol) address for the
same.
3. Without DNS, the Internet
would collapse - it would
be impossible for people
and machines to access
internet servers via the
friendly URLs they have
come to know.
4. Security
Issues in DNS
Any size of the Organisation Businesses knows
the importance of web sites and its internet
presence by having multiple online services.
Internet presence is critical for enterprise’s
reputation, revenue and growth. Therefore,
there are few network performance
parameters have acquired high focus than
before such as uptime, speed or reliability.
When it comes to monitoring the performance,
businesses tend to overlook one of the core
elements required for a reliable Internet
infrastructure, that is the Domain Name
system (DNS).
Whenever any organization becomes more
reliant on the internet, then it becomes more
critical in managing DNS. If we look at the
criticality or usage of the online services, the
threat and attacks are also increasing a lot.
Here are few examples because of which the
security issues are increasing in absence of
the DNS Security.
6. Our managed DNS Security is the solution
which helps to authenticate the response of
the DNS which is executed by sender.
Introduction
Sattrix's
Managed DNS Services
Introduction of Sattrix's Managed DNS
Services DNS Security also helps to prevents
attacks which are getting inject invalid
information into the DNS response like DNS
spoofing, cache poisoning & man in the
middle attacks.
Once DNS sensor is deployed in the
organization, DNS resolvers look for the
valid signature in the DNS records provided
in the DNS management.
7. Benefits of
Managed Services
Cost effective solution using
Managed Services model
Dedicated management resources &
DNS design
24x7 round the clock monitoring and
management
Customized Machine learning model to
classify anomalous DNS queries.
The filtered queries by ML model pass
through the set of rules defined by the
network administrator such as query
count threshold from a host, query
count threshold for a domain and
other critical parameters.
Queries for top public domains are
whitelisted and filtered.
Detailed traffic visibility and analysis with
SIEM/SOC Services for incident management.
Protect networks from pervasive threats,
such as DNS cache poisoning, DNS redirection,
malware and man-in-the-middle attacks.
8. By leveraging the TCPWave’s DNS
Infrastructure’s high availability, scalability,
accessibility, reliability, and distribution of
resources, you can drastically improve your
organization’s web-based operations.
About TCPWave
DNS Security
It can seamlessly integrate into your
existing DNS administration processes
and can work with your existing tool sets.
Using a managed DNS Solution offers
reduced complications in DNS
management and high scalability.
The solution leverages the world class
technologies like Anycast routing,
seamless failover and Black Hole
Detection which mitigates DDoS attacks
and increase fault tolerance.
9. KEY SECURITY
FEATURES
It will generally help for the
quick delivery of the content
that represent individual IP
addresses on multiple nodes
by directed to the specific
nodes.
DNS
Anycast
Helps to displays the DNSSEC
key validation between two
zones root and authoritative
with the graphical view.
DNSSEC
Viz
Will help enhancement to the
DNS protocol which serves as a
mitigation tool for the problem
of DNS amplification attacks.
DNS
response
Rate
Limiting
DNS tunnels are used for
malware infiltration and
exfiltration
Tunnel
Detection
10. ADVANTAGES of
DNS with NO
ADDITIONAL LICENSE
Performance Management:
performance reports withing the product.
Provides
DNS Firewall: Firewall prevents connected
devices from becoming infected with
malware and blocks their activity by enabling
recursive DNS Appliances to stop or redirect
queries from clients that want to access
domains and/or IPs known to be malicious.
Compromised devices can be identified
and located on the network for rapid
neutralization.
Ease of Migration:
legacy DNS to TCPWave migration.
Provides tools to perform
Continue...
11. Security:
inspection with DNS Firewall and BIND RPZ.
Supports GSS-TSIG from multiple AD forests
that have no trusts.
Offers a deep packet DNS firewall
Automation: Automation toolsets for
DNS are fully supported via restful API.
Segregation of duties:
Admin user rights are separate and not
accessible to each other.
Operational &
Software Resiliency:
Master/Slave and BIND/Unbound for
Cache layer resiliency in software.
Offers BIND/NSD for
12. Management
Server
SOC
Internet
Legends
SSL VPN Tunnel
DNS Request
DNS
Data
Center
DNS
Disaster
Recovery
Customer 1
DNS
Data
Center
DNS
Disaster
Recovery
Customer 1
Internet Users
IP Sec Tunnel IP Sec Tunnel
Sattrix's
MANAGED SECURITY
ARCHITECTURE
13. Sattrix Information Security (P) Ltd.
28, Damubhai Colony,
Bhattha Paldi,
Ahmedabad – 007
info@sattrix.com
+91-796-819-6800
HQ
516,517 Shivalik Shilp,
Iscon Cross Road, S G Highway,
Ahmedabad
SOC Center
Global Presence
USA
Sattrix Information Security Incorporation
MEA
Sattrix Information Security DMCC
UK/EU
Sattrix Information Security Ltd