DNS Cloud Firewall
Adding a Firewall in the Cloud
Cloud computing has fundamentally changed the way the Internet is used. Information and systems can be accessed from anywhere by anyone. Ransomware, phishing, viruses, and other forms of malware have also adopted the cloud to expose the vulnerabilities of legacy security solutions.
Without embracing the cloud, the challenge to secure our communications on heterogeneous networks and devices is nearly impossible. For example, a work device may be infected with malware from a hotspot network and, in turn, the device creates a security vulnerability on the private network.
We should look to leverage cloud security solutions to provide layered security instead of a single on-premise firewall approach.
Security without Compromising Performance
Due to their inherit design, legacy firewall solutions are processor intensive. As a result, expensive, powerful processors are required to drive local security solutions. This approach becomes very inefficient as the solution scales to hundreds or thousands of users.
Another challenge for legacy security is the growing adoption of encryption within telecommunications. Many security solutions try to implement DPI (deep packet inspection) to verify the content of a packet. Unfortunately, the only way to make DPI work with encrypted traffic is to create your own Man in the Middle vulnerability by replacing the original certificate with your own.
DNS is uniquely positioned to provide network security, because it sees all outgoing network traffic, but sits outside the data path. As a result, DNS with integrated firewall technology can efficiently block outgoing communications. Also, DNS security is based on information in the DNS queries, so increased encryption is not an issue.
Adopting a Cloud Approach
Since DNS severs typically sit on the edge of the network, they can be accessed from anywhere. This ability of the firewall to be available via the cloud provides significant benefits for mobile devices and real time updates.
Mobile devices can use DNS for security regardless of their connected network (i.e public hotspot, home network, mobile networks, etc). This allows Thunder DNS to provide 24/7 protection for any device using our DNS service.
Another advantage of using a DNS cloud firewall is the cloud backend is always up to date with the newest threats.
Cloud Firewall Benefits
No single solution is able to completely protect a network from cyber attacks. The industry best practice is to take a defense in depth approach with multiple layers of security. Below are benefits provided by adding Thunder DNS Cloud Firewall as a new security layer:
1. More Efficient/Scalable Cyber Security
2. Effective on encrypted traffic
3. Works via the cloud on any network for mobile devices
4. Security feeds update in real time for the entire network