Domain Name System Short Paper Assignment
The Domain Name System provides services critical to the operation of the network. And yet there have historically been problems with the DNS. What are these problems, and how can they be addressed? Domain Name System(DNS) as we all know is a hierarchical naming system for computers, services or any resource connected to the internet or a private network. We collectively use it billions times a day, often without even knowing that it exists. For enterprises, its their digital identity as well as a critical component of their security architecture. Too often, the always-on, ubiquitous nature of DNS lends itself to being overlooked. Let us look at five common threats that leverage DNS and also check on the suggested best practice and risk mitigation strategies. 1. Typo squatting: The practice of registering a domain name that is confusingly similar to an existing popular brand. This is the problem often considered with trademark attorneys. Recent research has demonstrated that it can present a profound risk to the confidentiality of corporate secrets and should be increasingly thought of as a security problem. Typo squatting is not about individuals opportunistically registering confusingly similar domains in the hope of benefitting from misdirected web traffic; it can also be used to steal information. Example: In early September, researchers from the Godai Group said that they successfully obtained 120,000 corporate emails by simply typo squatting certain domains and setting up catch all email accounts. Godai registered domains following the format “usexample.com” to steal mail destined for [email protected]. If an email was incorrectly addressed, missing a dot between “@us” and “example”, it would arrive in the researchers account instead. The research discovered that attackers could steal passwords,
Domain Name Servers (DNS) are the Internet's equivalent of a phone book. They maintain a directory of domain names and translate them to Internet Protocol (IP) addresses.
This is necessary because, although domain names are easy for people to remember, computers or machines, access websites based on IP addresses.
Information from all the domain name servers across the Internet are gathered together and housed at the Central Registry. Host companies and Internet Service Providers interact with the Central Registry on a regular schedule to get updated DNS information.
When you type in a web address, e.g., www.jimsbikes.com, your Internet Service Provider views the DNS associated with the domain name, translates it into a machine friendly IP address (for example 188.8.131.52 is the IP for jimsbikes.com) and directs your Internet connection to the correct website.
After you register a new domain name or when you update the DNS servers on your domain name, it usually takes about 12-36 hours for the domain name servers world-wide to be updated and able to access the information. This 36-hour period is referred to as propagation.