The DNS implementation must protect the authenticity of communications sessions for dynamic updates.
Overview
Finding ID
Version
Rule ID
IA Controls
Severity
V-205183
SRG-APP-000219-DNS-000029
SV-205183r961110_rule
Medium
Description
DNS is a fundamental network service that is prone to various attacks, such as cache poisoning and man-in-the middle attacks. If communication sessions are not provided appropriate validity protections, such as the employment of DNSSEC, the authenticity of the data cannot be guaranteed.