Protecting DNS: Securing Your Internet Address Book
- Thursday, November 13th, 2014 at 1:00 PM EST (18:00:00 UTC)
- John Pescatore and Cricket Liu
You can now attend the webcast using your mobile device!
The Domain Name System (DNS) is a critical protocol in internet communications and it is increasingly being focused on by hackers to launch advanced targeted attacks. Securing DNS assets is often overlooked in organizations efforts to protect IT infrastructures, since most legacy security technologies do not address the DNS security gap. As a result, man in the middle attacks and denial of service attacks that severely impact business are common but are also easily avoidable.
To change the present situation, network, data center and security experts as well as practitioners and executives need a better understanding of this threat and techniques to combat it.
This webcast will provide an overview of DNS, identify DNS risks, highlight real world DNS attacks and use the Critical Security Controls as a starting point to address these risks.
John Pescatore joined SANS as director of emerging security trends in January 2013. He has 35 years experience in computer, network and information security. Prior to joining the SANS Institute, Mr. Pescatore was Gartner's lead security analyst for 13 years, working with global 5000 corporations and major technology and service providers. Before joining Gartner, Mr. Pescatore was Senior Consultant for Entrust Technologies and Trusted Information Systems, where he started, grew and managed security consulting groups focusing on firewalls, network security, encryption and Public Key Infrastructures. Prior to that, Mr. Pescatore spent 11 years with GTE developing secure computing and telecommunications systems. Mr. Pescatore began his career at the National Security Agency, where he designed secure voice systems, and the United States Secret Service, where he developed secure communications and surveillance systems. He holds a Bachelor's degree in Electrical Engineering from the University of Connecticut and is a NSA Certified Cryptologic Engineer. He is also an Extra class amateur radio operator, callsign K3TN.
Cricket Liu is Infoblox's Chief Infrastructure Officer and serves as a liaison between Infoblox and the DNS community. Previously, he worked at HP for nearly 10 years, where he ran hp.com, one of the largest corporate domains in the world, and helped found HP's Internet consulting business. Cricket later co-founded his own Internet consulting and training company, Acme Byte & Wire. After Network Solutions acquired Acme Byte & Wire and later merged with VeriSign, Cricket became director of DNS Product Management.
Mr. Liu is the co-author of all of O'Reilly's Nutshell Handbooks on the Domain Name System, DNS and BIND, "DNS on Windows NT," DNS on Windows 2000, DNS on Windows Server 2003, and DNS & BIND Cookbook and DNS and BIND on IPv6 was the principal author of "Managing Internet Information Services."