Category: DNSSEC Articles and Presentations
An Introduction to DNS
Posted by DNSSEC.Asia in DNSSEC Articles and Presentations Wednesday, 16 February 2011 08:19 No Comments
Executive Summary
The Internet’s underlying addressing system is undergoing a worldwide foundational sea-change, transitioning from its outdated and insecure legacy design to a new, robust architecture which will help protect citizens, business and government from identity theft and fraud. The DotAsia Organisation and its technical service provider, Afilias, are leading the industry with the widespread deployment of DNSSEC, an extension to the Internet’s existing DNS Protocol that will bring an unprecedented degree of trust and confidence to Internet commerce, communications and e-government. As a consequence of this initiative, the .Asia TLD will gain an important security enhancement that will set the stage for the next decade of Internet innovation.
What is DNSSEC?
Posted by DNSSEC.Asia in DNSSEC Articles and Presentations Wednesday, 10 November 2010 11:22 No Comments
DNS Security Extensions (DNSSEC)
DNS Security Extensions (DNSSEC) was first introduced in the mid-1990s as an additional security measure to protect the DNS from cache poisoning exploits (recently referred to as the Kaminsky bug) which can allow a bad actor to get in the middle of an Internet users’ request to access a Web site without their knowledge. DNSSEC introduces digital signatures to the DNS infrastructure, allowing end users to more securely navigate the Internet. It can provide users with effective verification that their applications, such as Web or email, are using the correct addresses for servers they want to reach.
The History and Value of Deploying DNSSEC
Posted by DNSSEC.Asia in DNSSEC Articles and Presentations, Highlights Tuesday, 9 November 2010 10:53 No Comments
What problem does DNSSEC solve?
When you visit a website, or send an e-mail, can you be sure you are communicating with the server that you think you are?
DNSSEC RFC Standards
Posted by DNSSEC.Asia in DNSSEC Articles and Presentations Friday, 5 November 2010 11:42 No Comments
The following standards, published in March 2005, specify the core functionality of DNSSEC:
# RFC 4033 – DNS Security Introduction and Requirements
http://www.rfc-archive.org/getrfc.php?rfc=4033
# RFC 4034 – Resource Records for the DNS Security Extensions
http://www.rfc-archive.org/getrfc.php?rfc=4034
# RFC 4035 – Protocol Modifications for the DNS Security Extensions
http://www.rfc-archive.org/getrfc.php?rfc=4035
# RFC 5155 – DNS Security (DNSSEC) Hashed Authenticated Denial of Existence
http://www.rfc-archive.org/getrfc.php?rfc=4310
# RFC 4641 – DNSSEC Operational Practices
http://www.rfc-archive.org/getrfc.php?rfc=4641