Prevent Man-In-The-Middle (MITM) Attacks with DNSSEC

New Jersey-based Comodo has now taken over Portland-based DNS.com, a provider of domain names and internet security services. Dan Kimball, the CEO of DNS.com will now work with Comodo after the transition takes place.  The financial terms of the acquisition will not be revealed. 

 DNS is a provider of secure domain name system services to other businesses and Comodo is a security tools provider for the enterprise market.

Prevent Man-In-The-Middle (MITM) Attacks with DNSSEC

The DNS query load for VeriSign was around 62 billion every day on average for the 2nd quarter of 2010. This was a sixteen percent hike from the 1st quarter this year. Annually, the daily average saw an increase of twenty-eight percent.

With all this growth there has been great industry progress in implementing DNSSEC (Domain Name System Security Extensions). DNSSEC is a suite of Internet Engineering Task Force details for verifying particular sorts of data given by the DNS as utilized on IP systems. It is a lot of augmentations to DNS which give to DNS customers starting point confirmation of DNS information, validated disavowal of presence, and information trustworthiness, but not availability or confidentiality and therefore helps protect users against DNS cache and Man-In-The-Middle (MITM) attacks.

 In July 2010, Verisign joined with the United States Department of Commerce and the Internet Corporation for Assigned Names and Numbers (also known as ICANN) to assist the deployment of DNSSEC at the roots of the domain name system.

Forrester Research conducted a new study for VeriSign that showed how timely the implementation of DNSSEC is.  ‘DNSSEC Ready for Prime Time’ was based on the polling of approximately 300 IT decision makers and identified that DNS attacks are very common and has made DNS security a top priority for all businesses and organizations. Forrester also found 51% of all respondents experienced DNS related attacks such as ‘man in the middle’ attacks.

A problem that the Forrester study identified was the lack of awareness many IT decision makers had regarding DNSSEC. Only 43 percent of study respondents knew about DNSSEC and the issues it could provide solutions for. However, of the respondents that were aware of DNSSEC, 90% said they would implement the technology within 1.5 years.