Infoblox's Liu agrees. "IoT devices are often not designed with a lot of security in mind. You want to make sure devices are connecting where they should be and that if someone throws something else onto your IoT network they can't access your internal network. DNS is a useful place to monitor and control that access."
And because you're already using DNS, monitoring it isn't disruptive, Ulevitch points out. "Usually in security, the reason most things aren't used is the effort needed to make sure they don't have a detrimental effect on user performance."
In fact, you need a good reason not to be doing this, he says. "There are fundamental best practices in security and one of them is network visibility. Not being able to see the traffic on your network means you're flying blind. Finding a way to inspect DNS traffic is a fundamental requirement of a strong security posture. To not know what's happening on your network is borderline derelict."
Sign up for CIO Asia eNewsletters.