Non breaking change, no action is mandatory.
The futurae.com domain and its subdomains are now protected with DNSSEC.
What is this feature about?
DNSSEC enables an application or recursive resolver to verify the authenticity and integrity of data from DNS responses. It increases the security of the DNS protocol (which by default doesn't offer any security properties) and makes it harder for an attacker to inject or modify DNS responses which could fool an application to connect to a rogue, attacker-controlled IP address, instead of the legitimate one. As such, it adds yet another layer of defense (on top of TLS and other hardening features, such as public key pinning) against Man-in-the-Middle (MITM) attacks.
How can I benefit from this feature?
If your DNS resolver supports DNSSEC, then you and your applications which connect to the Futurae backend can automatically benefit from this feature. In case it does not, you could consider putting some pressure on them to support it. Switching resolver is also an option.
Comments
0 comments
Article is closed for comments.