Domain protection on four layers: These services make your domains as safe as possible. With just a few steps, you can protect your domains on the administration, domain, name server and server side.
Software Layer Domain Layer Name server Layer Server Layer
The company domain The most valuable asset of your digital business
The domain associated with your corporate website (for example www.COMPANY NAME.com) that you use to generate sales and leads, and that you use for your company email address (for example, info@COMPANY NAME.com) is invaluable to you. This one domain, which often includes the company or brand name, is the linchpin of your digital business. For this reason, a sophisticated security concept is needed to protect this domain. If you lose control of this domain, either trough malintent by criminal third
parties or unintentionally, many companies suffer direct financial losses within a few minutes. This often results in reputational damage because the corporate website is unreachable or the important company email communication collapses due to the loss of this one domain. Financial damage, possibly in the seven-digit range, are not uncommon – the damage to your own reputation can hardly be outweighed in money.
I. Software Layer
The domain management software AutoDNS enables simple, structured and above all secure administration for any type of company with different amounts of domains.
1. Access Control Management
Not every user needs full access to all AutoDNS services. The Access Control (ACL) management can be used to separately provided sub users with limited user rights according to their needs.
2. Two-Factor Authentication
The AutoDNS login takes place via a two-factor authentication, ensuring a double protection. This service is free of charge for InterNetX customers.
3. IP Restriction
In order to avoid unwanted logins, certain IP addresses are not allowed to log in by the IP restriction. The IP restriction is part of the AutoDNS login.
II. Domain Layer
Valuable domains should be protected against many dangers and InterNetX offers several services for that purpose. There is no 100 failsafe protection, but valuable domains should be secured as best as possible. All domain security services can be combined to offer the best protection against unwanted third-party access.
3. Whois Protection
Whois provides insight into the contact data of domain owners. To avoid this visibility, domain owners can hide their data from third-party insight with the help of Whois Privacy.
4. Domain Safe
Domains are individually blocked multiple times with a PIN / mTAN procedure and thus protected against unintentional access in a kind of vault.
5. Domain Monitoring
The monitoring list is checked every 30 minutes and, in the case of a critical action, an email or SMS will be sent to the contact stored in the monitoring section.
6. Dispute Alarm
The Dispute Alarm informs by weekly emails wether or not .DE domains in your inventory have a dispute entry and identifies such domains. If a dispute entry has been removed from a domain, it will also be communicated.
III. Name server Layer
The anycast name server service by InterNetX allows for a comfortable administration of the anycast name server zones through AutoDNS or the XML API – in real time.
The Domain Name System Security Extensions (DNSSEC) ensures the authenticity of queried data in the Domain Name System (DNS). The secure authentication of DNS data is clear and simple.
The NodeSecure name servers of InterNetX are distributed worldwide. This guarantees extremely high availability with short access times.
9. Email security
InterNetX offers SPF, DKIM and DMARC to protect the email traffic.
SPF (Sender Policy Framemwork) prevents the sender address of an e-mail from being forged. The domain holder enters in the DNS which mail transfer agents (MTAs) are authorized to send emails for this domain.
DKIM (DomainKey Protocol) ensures the authenticity of email senders and helps to minimize spam and phishing.
Finally, with DMARC, the email sender can also determine how the recipient handles an email that does not meet SPF and/or DKIM requirements. This ensures a consistent verification of the authenticity of the email.
10. Certificate Authority Authorization
Use the Certificate Authority Authorization (CAA) to dermine which CA is authorized to issue SSL certificate for the domain. This prevents counterfeit SSL certificates from being issued by an unauthorized CA.
IV. Server Layer
In order to protect a domain at all levels and also be able to present a stable and secure solution to the end customer, InterNetX provides several solutions for encrypted transmission.
11. Secure Socket Layer
InterNetX offers several SSL products that can be managed through a professional SSL management tool. PROCEED also automates the entire SSL lifecycle, simplifying the implementation and renewal of SSL certificates.
12. DDoS Protection
To protect yourself against high-volume DDoS attacks, InterNetX offers a DDoS mitigation service that can mitigate attacks and, ideally, maintain the performance of a service or site.
In addition, PROCEED can automatically enable a Web Application Firewall (WAF) with backdoor prevention that provides additional protection against attacks.