The recent wave of denial of service (DDoS) attacks and the arrest of individuals responsible for stealing credit card data on 130 million people is getting some attention in the mainstream press.
Forbes.com has a story "Avoiding the Identity Theft Underworld" that shows how easily you can be compromised by malware. But in terms of how you can protect yourself it leaves as many questions as answers. Consumers should not have to check URLs and avoid opening links or attachments. If the DNS is directing you to an improper site these steps won't help you in any case.
The only way to begin to address on-line identity theft is a system that authenticates who is whom so that you know where emails come from, you know that a web site is legitimate (or not legitimate), and no one can insert themselves between you and a web site to spy on you (a man in the middle attack).
DNSSEC is the only way to authenticate the Internet and email simply, universally and inexpensively. It makes the Internet work the way we think it should work without imposing exhaustive diligence on users. From a user perspective it requires nothing. It just works.
Mobile devices are becoming our computer, they are a key component to a busy lifestyle and make a lot of things easy for us. It's pretty inconvenient (insert stronger language if you wish) if you have to jump through a security verification process each time you get a message with an attachment, or a link, or if you have to verify the URL of a site you visit . But with DNSSEC this will not be necessary.
Consumers should demand DNSSEC from their broadband service providers and from anyone offering services over the web.
Comments