Archive for August, 2010

A new (now February 14, 2012) Internet draft of DNSSEC Operational Practices, Version 2 has been posted.  A working document of the Internet Engineering Task Force (IETF), the document is aimed at zone administrators deploying DNSSEC, and “discusses operational aspects of using keys and signatures in the DNS…issues of key generation, key storage, signature generation, key rollover, and related policies.”  Once approved, it will make obsolete RFC 4641.

EDUCAUSE, the association for information technology in higher education, and VeriSign announced today that DNSSEC has been deployed in the .edu domain.  EDUCAUSE manages .edu under a cooperative agreement with the U.S. Department of Commerce. scope of the internet. 

EDUCAUSE President and CEO Diana Oblinger said, “Dating from the creation of ARPANET through the present day, the higher education technology community has played a leading role in the development of the Internet as a platform for learning, discovery, and engagement. We have been happy to continue that role by being a lead partner in the launch of DNSSEC.”

In this news conference last week at Black Hat, ICANN CEO Rod Beckstrom joined Recursion Ventures chief scientist Dan Kaminsky  and Mark McLaughlin, President and CEO of Verisign to discuss the collaboration leading to deployment of DNSSEC.  Beckstrom noted:

A cyber criminal can steal your money or your personal data without you even knowing it. Cyber crime doesn’t respect national boundaries…This upgrade will help disrupt the plans of criminals around the world who hope to exploit this crucial part of the Internet infrastructure to steal from unsuspecting people.

(See a related news release here.)

Black Hat also included a panel on DNS vulnerabilities and risk management in which Beckstrom and Kaminsky joined speakers  Sandy Wilbourn, Vice President Engineering, Nominum; Ken Silva, Senior Vice President & Chief Technology Officer, VeriSign; Mark Weatherford, Vice President & Chief Security Officer, NERC; video of the session is below.