Security Policies

Securd offers an extensive set of features that can be customized to suit an organization's or MSP's specific needs. Securd provides a comprehensive and adaptable solution for managing security and threat hunting, from fundamental security measures to advanced trust settings and integration with other security tools. Its features play a vital role in ensuring that you can safeguard against malicious activities and get full control over your recursive DNS.

Policy Settings

These settings allow the administrators to customize how Securd interacts with DNS.

Internal Domain Suffix Bypass: This allows local network domains to be ignored, preventing unnecessary checks on trusted domains within your network.

Private Network Resolution: Controls whether domains can resolve to private networks, providing additional control over internal network access.

Response TTL: Defines how long the block page remains active in seconds, allowing control over user experience when a block is triggered.

Require DNSSEC: Enforces a higher security level by requiring DNS Security Extensions (DNSSEC) for all queries, ensuring the integrity and authenticity of DNS data.

Default Action: Determines whether DNS queries are allowed or denied by default, offering control over the overall security posture.

URL Proxy: Helps scrutinize high-risk URLs by turning their inspection on or off, providing a layer of web filtering.

Block Page: Enables customization of the page users see when attempting to access a blocked domain.

Security Settings

Securd's security operations team actively maintains protection against various categories of malicious domains, providing out-of-the-box security against known threats.

Zero Trust Settings

With the inclusion of Graph Defense™ (Beta) and DigitalStakeout Domain Rank, Securd incorporates proprietary ranking and trustworthiness systems, which enhance the service's ability to assess the credibility of domains.

Allow/Block List Settings

These options give users granular control over what is allowed or blocked. Custom lists for domains and networks can be defined to suit specific needs. Blocked or allowed items can be handled immediately, enabling faster response to known safe or unsafe destinations.

External Logging Settings

Securd offers real-time passive DNS log pushing to external systems like Extended Detection and Response (XDR), Security Information and Event Management (SIEM), or other logging tools over HTTP or Syslog. This feature helps integrate Securd with your existing security stack, providing comprehensive visibility and response capabilities.