🔒 Encryption
All traffic encrypted with TLS 1.2+. API calls, dashboard access, and webhook communication use HTTPS exclusively.
🔑 Authentication
Passwords hashed with bcrypt. Session-based auth with CSRF protection on all state-changing operations.
🛡️ DNSSEC
One-click DNSSEC signing prevents DNS spoofing and cache poisoning. Automatic key rotation handled by PowerDNS.
📝 Audit Trail
Every DNS change is logged with user attribution, timestamps, old/new values, and source IP address.
🔥 DNS Firewall
Rate limiting, IP-based blocking, and query type filtering protect your zones from abuse and DDoS attacks.
💳 Payment Security
All payments processed by Stripe (PCI DSS Level 1). We never store credit card numbers on our servers.
Responsible Disclosure
Found a security vulnerability? Please report it to security@wizudns.com. We take all reports seriously and will respond within 48 hours.