How does Route53 protect from DNS poisoning for AWS Services like Amazon Workspaces

Question

A customer wants to use Amazon Workspaces but  want to avoid DNS poisoning and if we can tell them how Route53 with Workspaces defends against DNS poisoning for the Workspaces HealthCheck servers.

Accepted Answer

AWS's standard identity and authentication systems provide protection against people impersonating you to modify your authoritative DNS data in Route 53. DNS poisoning attacks can also target DNS caches or resolvers. Since Route 53 only operates authoritative DNS servers we are not directly susceptible to these types of attacks and your choice of Route 53 as your DNS provider should not affect your threat level.

Additionally, you can configure DNSSEC for domain registration as described here

Additionally, you can configure DNSSEC for domain registration as described [here](http://docs.aws.amazon.com/Route53/latest/DeveloperGuide/domain-configure-dnssec.html)

How does Route53 protect from DNS poisoning for AWS Services like Amazon Workspaces

相关内容