This article from the Internet Protocol Forum might be a bit technical for some of my readers but it gives you a sense of the preparation required for a network to adopt DNSSEC.
Operational Challenges When Implementing DNSSEC
One point from the article cannot be stressed enough:
Most problems with DNSSEC are related to firewalls. Make sure to involve your security and networking administrators so that they can make the required changes before taking DNSSEC into production.
The publicity around DNSSEC over the past two weeks has generated quite a bit of interest in adoption. With a good plan and automation this is not rocket science and can be accomplished in days. But without it the risk of going dark can be significant.
Comments