Domain Name System

Mitigating DDoS Attacks eBook

The Domain Name System or DNS is a distributed internet database that, among other things, maps human- readable

Published By - knowledgeNile

The Domain Name System or DNS is a distributed internet database that, among other things, maps human- readable names to IP addresses, allowing users to reach the correct website when entering or following a URL. DNS is central to the performance and availability of your website and mobile presence, and the success of your online business. Every user’s first interaction with your website begins with a series of DNS queries. A contemporary webpage can involve dozens of DNS lookups to scores of distinct nodes. DNS lookups can account for as much as 50% of initial page load time. Poor DNS performance can lead to slow page loads, customer dissatisfaction, website abandonment, and lost business.

Additionally, Domain Name System is at the core of any strategy for Internet Performance Management (IPM), which is a proactive approach that organizations take to gain the visibility, control, and resilience they need to harness the internet the same way they do their internal infrastructure and apps. Real-time internet issues require real-time action. Domain Name System allows companies to manage traffic to their internet services across multiple clouds and content delivery network (CDN) providers.

DNS mappings are maintained in special-purpose servers known as DNS name servers. When a user enters your company’s URL, a Domain Name System query is routed to a DNS name server that contains the IP addresses for your company’s internet domain3. If your DNS name servers are unresponsive because of a DDoS attack, visitors can’t get to your website and you can’t conduct business on the web.

Distributed Denial of Service (DDoS) attacks poses a significant threat to online businesses. An average DDoS attack results in about 54 minutes of downtime,4 which can translate to substantial revenue loss. DDoS attacks continue to grow in complexity and frequency—the number of DDoS attacks increased by 125.36 % from 2015 to 2016.5

Your DNS infrastructure is susceptible to a variety of DDoS attacks. Some assailants may try to attack and overwhelm your Domain Name System servers directly. Others may try to exploit your DNS systems to launch attacks on other elements of your IT infrastructure, or even on other people’s services. The second kind of attack means you can be taken down even though you’re not really the target.

To overcome these challenges you need a highly resilient and scalable DNS infrastructure to mitigate today’s increasingly sophisticated security threats.