How to Respond to CISA Emergency Directive 19-01
On January 22, 2019, The Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive (ED) 19-01 in response to incidents involving Domain Name System (DNS) infrastructure tampering. In these incidents, attackers were able to gain access to accounts that can make changes to DNS records.Using this access, attackers altered DNS records to replace the legitimate IP address of a service with an address the attacker controls, enabling them to direct user traffic to their own infrastructure for man-in-the-middle manipulation or inspection. Attackers could also obtain valid encryption certificates for an organization's domain names, allowing redirected traffic to be decrypted without warnings being issued to end users.
Though the deadline has passed for compliance reporting to DHS, there are still ways that you can evaluate your DNS infrastructure to ensure continued compliance moving forward.
Join Infoblox for this webinar as they discuss and demonstrate the steps you can take using an Infoblox environment to protect your DNS infrastructure. Some of these include:
- Automated external DNS Integrity check
- Multi-factor Authentication
- Using Infoblox role-based permissions to limit write access to DNS data
- Other Infoblox features to prevent unwanted changes to DNS records
- Infoblox audit logging and other ways to track changes to DNS records
Relevant Government Agencies
Intelligence Agencies, DOD & Military, Dept of Homeland Security, Other Federal Agencies, Federal Government
Event Type
Webcast
This event has no exhibitor/sponsor opportunities
When
Tue, Feb 26, 2019, 2:00pm - 3:00pm
ET
Cost
Complimentary: $ 0.00
Website
Click here to visit event website
Organizer
Infoblox Gov Team at Carahsoft Technology Corp.
