Coming Up With Best Practices to Improve Security in the DNS Ecosystem

The end users of the Internet need to get reliable answers to their queries so that they can access the Internet. However, there are many places in the ecosystem that malicious parties can attack in order to cause end users to get false answers. Attackers will try to infiltrate systems that manage or host the DNS, or will try to intercede in the communication between those systems, in order to change the data that users see. There are many methods to prevent these attackers from succeeding, some of which can be considered "best practices" while many others offer insufficient protection. This session will catalog both the best and the insufficient practices to help the community come to a consensus on practices that will make a difference. - Session Leader: David Conrad Staff Facilitator: Cathy Petersen