Thursday, Nov 14, 2024

Posts Tagged ‘dns’

An Introduction to DNS

Executive Summary

The Internet’s underlying addressing system is undergoing a worldwide foundational sea-change, transitioning from its outdated and insecure legacy design to a new, robust architecture which will help protect citizens, business and government from identity theft and fraud. The DotAsia Organisation and its technical service provider, Afilias, are leading the industry with the widespread deployment of DNSSEC, an extension to the Internet’s existing DNS Protocol that will bring an unprecedented degree of trust and confidence to Internet commerce, communications and e-government. As a consequence of this initiative, the .Asia TLD will gain an important security enhancement that will set the stage for the next decade of Internet innovation.


What is DNSSEC?

DNS Security Extensions (DNSSEC)

DNS Security Extensions (DNSSEC) was first introduced in the mid-1990s as an additional security measure to protect the DNS from cache poisoning exploits (recently referred to as the Kaminsky bug) which can allow a bad actor to get in the middle of an Internet users’ request to access a Web site without their knowledge. DNSSEC introduces digital signatures to the DNS infrastructure, allowing end users to more securely navigate the Internet. It can provide users with effective verification that their applications, such as Web or email, are using the correct addresses for servers they want to reach.