Janet Network resolver
Advanced protection, with the performance and capacity to meet the needs of all Janet Network connected organisations
For enquiries contact:
From summer 2021, you'll be able to access this service via the cyber security portal. Visit the portal website to request access.
About Janet Network resolver
In research and education, you work hard to maintain a safe digital environment for staff and students. Response Policy Zone (RPZ) enhanced DNS resolution is an important layer of that defence.
With the right protection, you gain confidence that user DNS requests are prevented from reaching malicious domains – helping deliver safe and efficient internet access to your users.
To help achieve this, our Janet Network resolver service includes RPZ technologies to protect your users and your reputation – while delivering the performance and capacity to meet your needs as a Janet Network connected organisation.
Benefits
Prevent access to malicious sites
With RPZ protection, you can mitigate the risk of user’s web requests being directed to compromised or dangerous web sites (for example, as a result of phishing or related attacks).
To do this, the service uses both independent analysis and research on malware and phishing attacks to create RPZ feeds, that are continuously updated to adapt to emerging and evolving threats.
Meet user needs, no matter how large your organisation
The Janet Network resolver service is designed to meet your performance and capacity needs as a Janet-connected organisation. Based on carrier-grade technologies and incorporating the latest in advanced DNS protection, as well as all the protections provided via the Janet Network.
We are happy for you to benchmark the service to help ensure it meets your needs.
Cost-reduction
By using RPZ feeds as part of the Janet Network resolver service, you may choose not to use an RPZ of your own, which could save you time and money.
Case study: Trafford College Group
The Trafford College Group were already in the middle of a programme to upgrade their web filtering and firewall systems when their Jisc account manager recommended adding the Janet Network resolver service (JNRS). Find out why and how it benefited their security posture (pdf).
Your responsibilities
As part of the RPZ protection, a block screen will be presented to a user trying to connect to a malicious site. If the user believes this to be incorrect (a false positive), they should contact your local IT helpdesk contact.
If your local IT helpdesk team agree with the user, they can contact the Janet Network CSIRT team for assistance in removing the block.
We expect the actual number of false positives to be less than 0.5% of all blocks.
Eligibility
The service is available at no additional cost to organisations connected to the Janet Network.
Use of the Janet Network resolver service is subject to the acceptable use policy and security policy.
Service levels
Availability
This service availability is as per the Janet Network - 99.7% measured monthly over a 12 month period, excluding service-affecting maintenance.
Service
- 95% of all standard requests for the service will be completed within two working days
- 95% of all bespoke requests for the service will be completed within three working days
- 95% of all false positive reports will be assessed and actioned appropriately within two working days
Upcoming features: a community-created RPZ feed
Community-level intelligence
The planned Jisc RPZ feed will make use of the passive DNS data from the Janet Network resolver service for the benefit of the whole Jisc community. The more organisations using the resolver, the better the threat intelligence will be – protecting not only you, but the Janet Network as a whole.
Because the Jisc RPZ will derive its data from research and education traffic, the threat intelligence is likely to be more closely targeted to your needs.
Sign up to Janet Network resolver
Related services
To help you add layers of defence to your security capability, we offer a range of services. These include:
This service is included within the scope of our ISO9001 and ISO27001 certificates.