FCC DNSSEC Recommendations for ISPs Published

The recommendations that were previously announced have been published on the FCC’s CSRIC III website.

In brief, the report (318KB PDF)  lays out four levels of possible deployment with respect to validation and recommends that all ISPs implement at least the next to highest level, DNSSEC-aware resolvers, if not the highest level, actual validation at the ISP level.  This lays the foundation for ISPs to go to the next step and, perhaps more importantly, enables end systems to do their own validation without having to bypass the ISP’s DNS service completely.

Comments are closed.