Securing DNS Against Emerging Threats: A Hybrid Approach Whitepaper
Basic security hygiene and DNS best-practice architectures can be applied to raise the overall security level of an organization. Addressing these new threats, however, requires monitoring of DNS communications, the ability to recognize unusual or malicious activity and informing the broader security ecosystem to protect against lateral movement of threats. In addition, increased mobility of employees and contractors means that protecting and monitoring DNS services on premises is not sufficient; visibility needs to be extended out to protect the mobile workforce.
This paper looks at the impact of mobility and new attack vectors on DNS-related risk and outlines use cases for securing DNS services more effectively. It also examines the use of a hybrid model of on-premises and cloud-based services to improve the security posture of organizations.