The Public Interest Registry announced today that the .org domain - the third largest domain after .com and .net - has deployed DNSSEC in production. This is a huge milestone and a notable technical achievement by Afilias, which operates the .org domain and uses Secure64 DNS Signer software for DNSSEC signing operations.
The announcement came at the ICANN conference in Brussels. I embedded secions of the press conference below but they seem to have troubel working in Explorer. You can view the press conference here at the ICANN site. If you view just one of these I recommend Dan Kaminsky's segment.
Alexa Radd is th President of PIR, the most trusted internet domain. PIR has taken a leadership role in DNSSEC deployment and user education about internet security.
Steve Crocker is one of the inventors of the internet and has been the leader of DNSSEC development from the very beginning and is the leader of the DNSSEC Deployment Initiative.
Dan Kaminsky is an internet security expert who discovered the vulnerability in the DNS that carries his name. It was this vulnerability that gave momentum to DNSSEC adoption, because even with the patch the vulnerability still exists and the patch does not work at high speeds. He also pointed out that without DNSSEC both SSL and VPN tunneling are not truly secure, and therefore ecommerce and remote email access are not secure.
Rod Beckstrom is the CEO of ICANN, the governing body over the DNS and of the DNS root servers, which go live with DNSSEC on July 15. Believe me, the political issues related to signing the root servers were not trivial and ICANN must be congratulated for persistence in getting this done.
DNSSEC keys will be published in 22 days. This is an enormous achievement. Here is a link to an earlier post that explains a bit about the process and its significance.
Comments