Domain security

Domain protection on four layers: These services make your domains as safe as possible. With just a few steps, you can protect your domains on the administration, domain, name server and server side.

Software Layer
Domain Layer
Name server Layer
Server Layer

The company domain
The most valuable asset of your digital business

The domain associated with your corporate website (for example www.COMPANY NAME.com) that you use to generate sales and leads, and that you use for your company email address (for example, info@COMPANY NAME.com) is invaluable to your business. This one domain, which often includes the company or brand name, is the linchpin of your digital operations. For this reason, a sophisticated security concept is needed to protect this domain. If you lose control of this domain, whether due to malicious intent by criminal third parties or due to unintentional

errror, many companies suffer direct financial losses within a few minutes. This often results in reputational damage because the corporate website is unreachable or the central company email communication channel collapses. With the loss of just one domain, the company can be faced with hefty consequences. Financial damage, possibly in the seven-digit range, is not uncommon. On the other hand, the damage to the company's reputation can hardly be sufficiently expressed in monetary terms.

I. Software Layer

The domain management software AutoDNS enables simple, structured and, above all, secure administration for any type of company with varying domain portfolio sizes.

1. Access Control Management

Not every user needs full access to all AutoDNS services. The Access Control (ACL) management can be used to separately provide subusers with limited user rights according to their needs.

2. Two-Factor Authentication

The AutoDNS login takes place via a two-factor authentication, ensuring double protection. This service is free of charge for InterNetX customers.

3. IP Restriction

In order to avoid unwanted access, IP restriction prevents logins by certain IP addresses. IP restriction is part of the AutoDNS login.

II. Domain Layer

Valuable domains should be protected against many dangers and InterNetX offers several services for that purpose. There is no 100% failsafe solution, but valuable domains should be protected as securely as possible. All domain security services can be combined to offer the best protection against unwanted third-party access.

4. Whois Protection

Whois provides insight into the contact data of domain owners. To avoid this visibility, domain owners can hide their data with the help of Whois Privacy.

5. Domain Safe

Domains are individually blocked multiple times with a PIN / mTAN procedure and thus protected against unintentional access in a kind of digital vault.

6. Domain Monitoring

The monitoring list is checked every 30 minutes and, in the case of a critical action, an email or SMS will be sent to the contact stored in the monitoring section.

7. Dispute Alarm

The dispute alarm sends weekly emails to inform you whether any .DE domains in your inventory have a dispute entry and identifies relevant domains. If a dispute entry has been removed from a domain, it will also be communicated.

III. Name server Layer

The anycast name server service by InterNetX allows for a comfortable administration of the anycast name server zones through AutoDNS or the XML API – in real time.

8. DNSSEC

The Domain Name System Security Extensions (DNSSEC) ensures the authenticity of queried data in the Domain Name System (DNS). The secure authentication of DNS data is clear and simple.

9. Anycast

The NodeSecure name servers of InterNetX are distributed worldwide. This guarantees extremely high availability with short access times.

10. Email security

InterNetX offers SPF, DKIM and DMARC to protect email traffic. SPF (Sender Policy Framemwork) prevents the sender address of an e-mail from being forged. The domain holder specifies, in the DNS, which mail transfer agents (MTAs) are authorized to send emails for the relevant domain. DKIM (DomainKey Protocol) ensures the authenticity of email senders and helps minimize spam and phishing. Finally, with DMARC, the email sender can also determine how the recipient handles an email that does not meet SPF and/or DKIM requirements. This ensures consistent verification of the email authenticity.

11. Certificate Authority Authorization

Use the Certificate Authority Authorization (CAA) to dermine which CA is authorized to issue SSL certificate for the domain. This prevents counterfeit SSL certificates from being issued by an unauthorized CA.

IV. Server Layer

In order to protect a domain at all levels and also be able to present a stable and secure solution to the end customer, InterNetX provides several solutions for encrypted transmission.

12. Secure Socket Layer

InterNetX offers several SSL products that can be managed through a professional SSL management tool. PROCEED also automates the entire SSL lifecycle, simplifying the implementation and renewal of SSL certificates.

13. DDoS Protection

To protect yourself against high-volume DDoS attacks, InterNetX offers a DDoS mitigation service that can mitigate attacks and, ideally, maintain the performance of a service or site.

14. WAF 

In addition, PROCEED can automatically enable a Web Application Firewall (WAF) with backdoor prevention that provides additional protection against attacks.

Become a customer
There is no 100% failsafe protection. In order to make your online appearance as safe as possible, you should take advantage of the entire security process offered by InterNetX GmbH.