Domain Security

Domain protection on four layers: These services make your domains as safe as possible. With just a few steps, you can protect your domains on the administration, domain, name server and server side.

Software Layer
Domain Layer
Name server Layer
Server Layer

The company domain
The most valuable asset of your digital business

The domain associated with your corporate website (for example www.COMPANY NAME.com) that you use to generate sales and leads, and that you use for your company email address (for example, info@COMPANY NAME.com) is invaluable to you. This one domain, which often includes the company or brand name, is the linchpin of your digital business. For this reason, a sophisticated security concept is needed to protect this domain. If you lose control of this domain, either trough malintent by criminal third
parties or unintentionally, many companies suffer direct financial losses within a few minutes. This often results in reputational damage because the corporate website is unreachable or the important company email communication collapses due to the loss of this one domain. Financial damage, possibly in the seven-digit range, are not uncommon – the damage to your own reputation can hardly be outweighed in money.

I. Software Layer

The domain management software AutoDNS enables simple, structured and above all secure administration for any type of company with different amounts of domains.

1. Access Control Management

Not every user needs full access to all AutoDNS services. The Access Control (ACL) management can be used to separately provided sub users with limited user rights according to their needs.

2. Two-Factor Authentication

The AutoDNS login takes place via a two-factor authentication, ensuring a double protection. This service is free of charge for InterNetX customers.

3. IP Restriction

In order to avoid unwanted logins, certain IP addresses are not allowed to log in by the IP restriction. The IP restriction is part of the AutoDNS login.

II. Domain Layer

Valuable domains should be protected against many dangers and InterNetX offers several services for that purpose. There is no 100 failsafe protection, but valuable domains should be secured as best as possible. All domain security services can be combined to offer the best protection against unwanted third-party access.

4. Whois Protection

Whois provides insight into the contact data of domain owners. To avoid this visibility, domain owners can hide their data from third-party insight with the help of Whois Privacy.

5. Domain Safe

Domains are individually blocked multiple times with a PIN / mTAN procedure and thus protected against unintentional access in a kind of vault.

6. Domain Monitoring

The monitoring list is checked every 30 minutes and, in the case of a critical action, an email or SMS will be sent to the contact stored in the monitoring section.

7. Dispute Alarm

The Dispute Alarm informs by weekly emails wether or not .DE domains in your inventory have a dispute entry and identifies such domains. If a dispute entry has been removed from a domain, it will also be communicated.

III. Name server Layer

The anycast name server service by InterNetX allows for a comfortable administration of the anycast name server zones through AutoDNS or the XML API – in real time.

8. DNSSEC

The Domain Name System Security Extensions (DNSSEC) ensures the authenticity of queried data in the Domain Name System (DNS). The secure authentication of DNS data is clear and simple.

9. Anycast

The NodeSecure name servers of InterNetX are distributed worldwide. This guarantees extremely high availability with short access times.

10. Email security

InterNetX offers SPF, DKIM and DMARC to protect the email traffic. SPF (Sender Policy Framemwork) prevents the sender address of an e-mail from being forged. The domain holder enters in the DNS which mail transfer agents (MTAs) are authorized to send emails for this domain. DKIM (DomainKey Protocol) ensures the authenticity of email senders and helps to minimize spam and phishing. Finally, with DMARC, the email sender can also determine how the recipient handles an email that does not meet SPF and/or DKIM requirements. This ensures a consistent verification of the authenticity of the email.

11. Certificate Authority Authorization

Use the Certificate Authority Authorization (CAA) to dermine which CA is authorized to issue SSL certificate for the domain. This prevents counterfeit SSL certificates from being issued by an unauthorized CA.

IV. Server Layer

In order to protect a domain at all levels and also be able to present a stable and secure solution to the end customer, InterNetX provides several solutions for encrypted transmission.

12. Secure Socket Layer

InterNetX offers several SSL products that can be managed through a professional SSL management tool. PROCEED also automates the entire SSL lifecycle, simplifying the implementation and renewal of SSL certificates.

13. DDoS Protection

To protect yourself against high-volume DDoS attacks, InterNetX offers a DDoS mitigation service that can mitigate attacks and, ideally, maintain the performance of a service or site.

14. WAF 

In addition, PROCEED can automatically enable a Web Application Firewall (WAF) with backdoor prevention that provides additional protection against attacks.

Become a customer
There is no 100% failsafe protection. In order to make your online appearance as safe as possible, you should take advantage of the entire security process of InterNetX GmbH.