DNSSEC

DNSSEC ("Domain Name System Security Extensions") is a protocol standardized by the IETF to solve certain security problems related to the DNS protocol.

When the browser sends a request, it returns with an authentication key that certifies that the returned IP is the correct one.

The user is then assured of accessing the right site when he receives a DNSSEC-validated IP. The goal is to point out inconsistencies in requests.

If a hacker tries to modify the table contained in the DNS server protected by DNSSEC, the latter refuses his requests, the information sent being unsigned.

Retour au lexique

About ProHacktive

Contact

DNSSEC