Catalog Description
DNS is crucial for all Internet transactions, but it is subject to numerous security risks, including phishing, hijacking, packet amplification, spoofing, snooping, poisoning, and more. Learn how to configure secure DNS servers, and to detect malicious activity with DNS monitoring. We will also cover DNSSEC principles and deployment. Students will perform hands-on projects deploying secure DNS servers on both Windows and Linux platforms.
Advisory: CNIT 106 or 201E, or Network+-level understanding of networking.
Upon successful completion of this course, the student will be
able to:
- Describe the normal operation of DNS: Zones, servers, records, and protocol function
- Explain common DNS attacks, including hijacking, snooping, poisoning, spoofing, fast flux, and packet amplification
- Understand common defenses against each type of attack
- Configure a secure BIND server on Linux
- Configure a secure Windows DNS server
- Prevent unwanted zone transfers
- Design high-availability DNS infrastructure
- Explain how to detect security breaches with DNS monitoring
- Describe the function and operation of DNSSEC
- Add a DNSSEC signatures to a zone
Textbook
"DNS Security" by Anestis Karasaridis, Amazon Digital Services, Inc., ASIN: B007ZW50WE
Buy from Amazon
Free Kindle Apps
|