U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

Secure Domain Name System (DNS) Deployment Guide

Published

Author(s)

Scott Rose, Cricket Liu, Ross Gibson

Abstract

This document provides Domain Name System (DNS) deployment guidelines to secure the DNS protocol and infrastructure, mitigate misuse or misconfiguration, and provide an additional layer of network security as part of a zero trust and/or defense-in-depth security risk management approach. This introduction briefly discusses relevant context for DNS and examines the changing threat landscape that has warranted an updated approach to DNS deployment.
Citation
Special Publication (NIST SP) - 800-81r3
Report Number
800-81r3
NIST Pub Series
Special Publication (NIST SP)
Pub Type
NIST Pubs

Download Paper

https://doi.org/10.6028/NIST.SP.800-81r3
Local Download

Keywords

Authoritative Name Server, Domain Name sytem (DNS), DNS Logging, DNS Security Extensions (DNSSEC), Encrypted DNS, Protective DNS, Recursive Name Server, Resource Record (RR)
Trustworthy networks, Network security and robustness and Cybersecurity and privacy

Citation

Rose, S. , Liu, C. and Gibson, R. (2026), Secure Domain Name System (DNS) Deployment Guide, Special Publication (NIST SP), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://doi.org/10.6028/NIST.SP.800-81r3, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=960578 (Accessed March 20, 2026)

Issues

If you have any questions about this publication or are having problems accessing it, please contact [email protected].

Created March 19, 2026
Was this page helpful?