DNS 安全的演变.pdf

《DNS 安全的演变.pdf》由会员分享，可在线阅读，更多相关《DNS 安全的演变.pdf（123页珍藏版）》请在三个皮匠报告上搜索。

1、#CiscoLive#CiscoLiveChristian Clasen,Technical Leader,Cloud Security TMExianclasenBRKSEC-2051The Evolutionof DNS Security 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveBRKSEC-20513 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveSession abstrac

2、tThe DNS protocol was designed to be decentralized and hierarchical,but not secure.Almost since its inception there have been exploits.We need to protect this vital network service.In this presentation,attendees will first learn the history of the DNS protocol,how it really works under the hood,and

3、what the attack vectors and vulnerabilities are that make it such a juicy target.From there,the material progressing into the various attempts to secure DNS,from DNSSEC to DNSCrypt,through more modern methods including DNS over HTTPS(DoH),DNS over TLS(DoT),and DNS over QUIC(DoQ).BRKSEC-20514 2023 Ci

4、sco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnter your personal notes hereCisco Webex App Questions?Use Cisco Webex App to chat with the speaker after the sessionFind this session in the Cisco Live Mobile AppClick“Join the Discussion”Install the Webex App or go directly to th

5、e Webex spaceEnter messages/questions in the Webex spaceHowWebex spaces will be moderated by the speaker until June 9,2023.12345https:/ 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicBRKSEC-20515Agenda 2023 Cisco and/or its affiliates.All rights reserved.Cisco PublicDNS OverviewVul

6、nerabilities and AbusesDNSSEC and DNSCryptDoT/DoHOblivious DNSDoQBRKSEC-20516DNS Overview 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveBRKSEC-20518 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveMaintained by Stanford Research InstituteRequir