The total number of Distributed Denial of Service (DDoS) attacks increased 26% from Q4-2012 to Q4-2013, and infrastructure (Layer 3 and 4) attacks increased 29%. The average attack duration was 23 hours, and many attacks consumed over 100 Gbps of bandwidth. (Source: Prolexic Technologies)
According to a new survey conducted for EfficientIP by IDC, while most organizations are aware of the security risks linked to DNS servers (82% of respondents were aware and recognized the threats), most IT budgets and time are still spent on more traditional network security solutions such as Firewalls (68%) which will not have any effect.
DNS hijackings caused thousands of sites to redirect users to exploit kit, pushing victims to fake websites, usually to steal financial details. (Source: Symantec Internet Security Threat Report 2014) Name servers can be particularly vulnerable to cyber attacks. The need for DNS security is greater than ever. Hybrid DNS technology provides the highest-level security for your name servers. When a security alert or actual cyber attack affects your currently running name server software, Hybrid DNS technology gives you alternative name server software that you can switch to with a single click. Your data center operations continue normally, and you revert to using the original name server software only after its vulnerability has been patched, tested, and verified. The result is greater security, less risk, better performance (the alternative name server software is highly responsive), and easier administration. EfficientIP is the only DDI vendor to provide state-of-the-art, high-quality, truly effective hybrid DNS security.
Join the UPto17 Revolution
SOLIDserver™ is the only DNS Cache appliance available today that can support up to 17 Million (17M) Queries per Second (QPS). Using EfficientIP’s SOLIDserver™ DNS Blast appliance, you can confidently provide the DNS service your business deserves. By eliminating dozens of DNS clusters and load balancers, you will dramatically decrease the total cost of ownership, simplify your DNS infrastructure, and increase a higher level of security.
Why is DNS Performance so Important?DNS Availability to Ensure Business Continuity
If your DNS servers crash and stop answering queries, your users will not be able to connect with their applications, nor will your customers be able to interact with you. In simple words, you lose money, and your brand image will be dramatically impacted.
Follow DNS Best Practices Against Cache Poisoning
The DNS protocol was designed to always answer a query. If for any reason there is latency or time out and some queries do not get resolved, this creates a major security hazard. Your DNS is now wide open for attackers to poison your DNS cache, which means that valid traffic will be redirected to malicious sites where private data can be intercepted and stolen.
Protect Legitimate Traffic, Block Queries Only When You’re 100% Sure
Trying to filter malicious queries from valid queries is a very dangerous game and very difficult to achieve or administer operationally. Filtering can easily generate false positives, and have you block legitimate traffic. (See recent attack on Rackspace)
DNS Blast Benefits- Mitigate risk before DDoS attacks take down your business
- Simplify your DNS infrastructure while maintaining high level of security
- Reduce cost of DNS management and ownership
- No risk of blocking valid DNS Queries with inaccurate filtering
- Limit DNS Cache poisoning while always answering queries