DNS Security Extensions
It has been known for years that the DNS is vulnerable to spoofing, cache poisoning, and other attacks. These are not problems due to bugs or poor software but stem from fundamental issues related to the protocol itself. Consequently, the issues have to be addressed within the protocol itself to be truly effective. DNS Security Extensions (DNSSEC) add cryptographic primitives to the protocol that help prevent spoofing by establishing stronger identification for trusted servers and preserve the integrity of responses from manipulation.
Extended Verification Certificates
Secure Sockets Layer (SSL) certificates help assure a site's identity only in cases where the purported domain name differs from the actual one. For ...
Get Seven Deadliest Web Application Attacks now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
