Posts Tagged deployment progress
In “Technology milestone heralds a more secure Internet,” BBC News reports on the advent of the signed root zone. The article quotes Recursion Ventures chief scientist Dan Kaminsky:
“The basic flaw of the internet is one of trust and this will revolutionise the way we use the internet. In my mind the biggest benefit we will get…is secure email where it will be truly possible to know that when you get an email from your bank, it really is your bank.”
ICANN detailed the first production DNSSEC key ceremony in a high security data center in Culpeper, VA, outside of Washington, DC, pictured here. The ceremony takes place tomorrow, June 16, and is designed to demonstrate the transparency and trust needed to secure the domain name system. The ICANN article describes the process that will be followed tomorrow:
During the key ceremony the first cryptographic digital key used to secure the Internet root zone will be generated and securely stored.
Each key ceremony consists of a series of detailed procedures designed to allow the private key material for the root zone to be managed in a transparent yet secure manner. The goal is for the whole Internet community to be able to trust that the procedures involved were executed correctly, and that the private key materials are stored securely.
Security of the private key is important because it ensures that any signature made by that key is known to originate from a legitimate key ceremony, and not by an untrusted third party.
Government Computer News reported earlier this month on the islands of trust in the chain of DNS security as deployment moves forward, including interviews with Initiative partners Scott Rose of the National Institute of Standards and Technology, and Shinkuro CEO Steve Crocker. Crocker noted, “We are in the early days of deployment…We have some early adoption, and things are well on their way but still far away from the end point.” The article examines the progress of DNSSEC deployment in the U.S. federal government as well as the commercial, nonprofit and education sectors.
Via this post on Twitter, AFNIC CEO Mathieu Weill reported yesterday that the registry has DNSSEC-signed .PM, its first top-level domain in production. AFNIC manages .PM, which is the country code top-level domain for St. Pierre and Miquelon.
New speakers have been added to the roster for “What’s Next in DNSSEC,” a day-long special program at the FOSE convetion and expo. The session, which takes place from 10:00 to 4:30 on Wednesday, March 24, now includes these speakers and topics:
Rodney Joffe, Senior Vice President and Chief Technologist, Neustar, speaking on deployment in .us
Lauren Price, Senior Product Marketing Manager and Chair of the DNSSEC Industry Coalition, .org, the Public Interest Registry, speaking on deployment in .org.
Bill Billings, U.S. Federal Chief Security Officer for Microsoft joins the panel on DNSSEC lessons learned.
You can see the full, updated agenda for the day here.