The Cybersecurity and Infrastructure Security Agency (CISA) released a detailed document in April 2024, explaining how federal agencies can enhance their cybersecurity by utilizing encrypted Domain Name System (DNS) protocols, aligning with the zero-trust cybersecurity plan for FCEB departments. The guidance emphasizes employing CISA's Protective DNS feature, ensuring encryption of all outgoing DNS resolve. It outlines rules for setting up encrypted DNS protocols, blocking unauthorized DNS traffic, and using encrypted DNS for roaming and on-premises endpoints
Additionally, it provides technical instructions on implementing Protective DNS for web browsers, operating systems, and DNS servers, promoting the use of encrypted DNS to protect against malicious activities and adhering to federal requirements for encrypting DNS data by FY24. https://cybersecuritynews.com/cisa-reveals-guidance/