Quantcast
Channel: Networks Asia - IT news
Viewing all articles
Browse latest Browse all 2029

Neustar unveils a private network of DNS connections

$
0
0
Neustar unveils a private network of DNS connections

Neustar, has announced the public launch of its DNS Shield, a worldwide network of secure private domain name system (DNS) connections between Neustar and its partners.

Neustar says its DNS Shield network is independent of public internet networks and embodies an industry-first approach to eliminating latency and security vulnerabilities for DNS traffic within its partner network.

“DNS is the backbone of the Internet, but the original protocol design was slightly flawed and failed to take in to account some of the potential security issues, which now make it an attractive target for attacks,” said Rodney Joffe, SVP and Distinguished Fellow, Neustar. “Optimizing and protecting DNS is a mission-critical task since an outage can result in downtime, network latency, lost revenue, and a negative brand experience.”

The recent emergence of the Mirai botnet, which compromised insecure Internet of Things (IoT) devices, created the perfect environment for massive DDoS attacks on DNS servers, which resulted in major Website outages.

The DNS Shield network forms a secure connection between Neustar UltraDNS authoritative servers and the recursive servers of its partners, minimizing the vulnerable points of compromise targeted in distributed denial of service (DDoS) attacks and DNS Spoofing, while lowering the latency of DNS transactions and improving the reliability of query responses significantly.

Neustar’s DNS Shield network supplements a global IP Anycast Network by adding scores of private nodes to the existing 30 public nodes across six continents to answer more than 33 billion queries per day.

The Neustar network already includes a purpose-built DDoS mitigation solution that protects its UltraDNS network, but the addition of the DNS ShieldTM network will harden its defenses against attacks by removing traffic entirely from the public Internet domain.

The DNS Shield network enables DNS traffic to circumvent general public Internet networking connectivity that is frequently slow and congested, ensuring that even holiday traffic or massively scaling users cannot cause outages or delays. In most cases the DNS Shield network nodes are located within 100 feet of partner recursive servers, reducing network latency to single digit milliseconds – the fastest in the world.

The DNS Shield network creates a private network for DNS resolution within its partner network, eliminating security threats, such as DDoS attacks and cache poisoning attempts by shielding direct DNS connections from public view and excluding public Internet traffic.

In the event of a DDoS attack or significant network outage, DNS queries will continue to resolve within the private networks where DNS Shield technology is deployed. This resiliency ensures an optimal network experience for Neustar partners and customers to ensure maximum uptime.

“DNS remains constantly threatened by DDoS attacks, cache poisoning assaults, spoofing attempts, and innocently enough, high volume website traffic, which can all lead to service disruptions for a significant portion of the Internet,” said Joffe. “Neustar is hardwiring the Internet with private network connections between our authoritative servers and our partner’s recursive servers, limiting the potential for our UltraDNS network to succumb to these attacks.”


Viewing all articles
Browse latest Browse all 2029

Trending Articles