How can a well-constructed Domain Name System (DNS) structure contribute to IT security in healthcare? We talk about this in an interview with Sven-Holger Wabnitz, Senior Advisor at DomiNIC. On 17 September, he will be giving the keynote address “Safe with security – DNS infrastructures in the healthcare sector” at the Internet Security Days 2021.
Mr Wabnitz, the threat situation for companies has increased significantly during the pandemic. How can companies leverage their DNS in the evolving fight against modern attackers?
Wabnitz: A well-designed DNS architecture may well be considered the first line of defence against IT attacks, as it is responsible for delivering authentic responses to queries with integrity. This may include filtering requests from the company to known malicious websites and services. A sensible structure also includes accessing regulations in order to be able to map the responsibilities and areas of activity of employees. Together with the auditability of changes, these form the basis for including the DNS in a certified management system for information security. In order to maintain sovereignty over your own data, you should consider how and where the various DNS services are operated. Every use of the DNS, whether by a human being or machine, can be logged and analysed.
Why are Domain Name System Security Extensions (DNSSEC) so essential for companies? What advantages do they bring?
Wabnitz: Attacks on the DNS – such as the falsification of responses from DNS servers – entail the risk not only of financial damage but also of reputation loss for companies. The security aspect of liability is covered by DNSSEC, where responses from DNS servers are transmitted in an electronically-signed form: The DNS must not be the weakest link in the chain. The benefit for companies is that they actually reach the required Internet services and are not unknowingly redirected. With DNSSEC, company employees can make sure they are connected to the requested services.
What is the importance of the DNS infrastructure in the health sector?
Wabnitz: It’s like so often in the Internet world – the DNS is the foundation. The basic infrastructure enables communication among participating partners and access to distributed health data. The benefits and relevance of DNS in the healthcare sector are essential and IT security aspects are therefore given a very high priority.
Thank you very much for the interview!
Detailed information on the topic will be available at the Internet Security Days on 16 and 17 September 2021. Tickets can be found here.