云平台DNS安全体系研究

发布时间:2023-03-06 作者:宋林健,马永,梁卓

 

摘要:域名系统(DNS)是互联网的基础设施服务,对数字经济发展的安全和稳定至关重要。结合阿里云DNS 的安全实践,提出了适应融合云时代发展的DNS 安全体系,包括全链路和融合云DNS 的应用场景,DNS 南北向、东西向服务接口能力,以及在数据保密性、数据一致性、服务高可用、软件质量、安全运维、服务测量等多个维度的安全能力框架。

关键词:DNS;安全体系;互联网基础设施

 

Abstract: The domain name system (DNS) is the infrastructure service of the Internet and is crucial to the continuous security and stability of the digital economy. Based on the security practice of Alibaba Cloud DNS, a DNS security framework suitable for the development of a converged cloud era is proposed, including the application scenarios of the all-link and converged cloud DNS, the south-north and east-west service interface capabilities of DNS, as well as a security capability framework in multiple dimensions such as confidentiality, Integrity, availability, software quality, operation, and service measurement.

Keywords: DNS; security framework; Internet infrastructure

在线PDF浏览: PDF