Great news out of Verisign today – they have signed the .TV and .CC domains with DNSSEC! Per ICANN’s TLD DNSSEC report, this means that we’re now at 107 TLDs out of 317 with DS anchors in the root zone.  Great to see! So now… if you have a domain in the .TV or .CC Read more…

Can’t get to Dublin, Ireland, to attend the DNS-OARC Spring Forum 2013 but interested in all the DNS and DNSSEC-related talks?  The good news is that there is a webcast / livestream of the event via Adobe Connect at:  http://icann.adobeconnect.com/dns-oarc/ As I wrote about last week, there are a good number of the talks related Read more…

Next week in Dublin, Ireland, the RIPE 66 Meeting will take place from May 13-17 and a number of Internet Society technical staff will be onsite including two of us from Deploy360: Jan Zorz and myself (Dan York).  The meeting plan has a great number of topics of interest, but two in particular that we’ll Read more…

This weekend begins the “Spring Forum” of the Domain Name System Operations Analysis and Research Center, a.k.a. “DNS-OARC” and it once again represents a gathering of many of the prominent people within the DNS / DNSSEC community. The event takes place in Dublin, Ireland, on the Sunday and Monday morning prior to the RIPE 66 meeting happening for the rest of the week.

Would you like to chat with me (Dan York) about DNSSEC and DANE and how they might work with voice-over-IP (VoIP) and unified communications (UC)? Or would you just like to listen to my views on the subject? If so, you can join in to the live “VoIP Users Conference (VUC)” conference call / podcast Read more…

It’s official… Google’s Public DNS service is now performing DNSSEC validation for all DNS queries by default! When news broke back on March 19 that Google had enabled DNSSEC validation on its Public DNS service, there was some initial concern after people noticed that Google was only performing the DNSSEC validation when requested. This led Read more…

Can DNSSEC help make voice and video communications over IP more secure?  Could DNSSEC combined with DANE provide a means to more easily distribute the TLS/SSL certificates needed for VoIP phones and systems?  Can DNSSEC help ensure that you are talking with the correct VoIP system or application server?  Can DNSSEC improve the security of Read more…

This page will serve as a repository of information related to how DNSSEC and DANE can work with communications protocols based on IP, including voice-over-IP (VoIP), unified communications (UC). real-time communications (RTC) and the use of the Session Initiation Protocol (SIP). Documentation (need to identify any documentation on this topic) Presentation Slides Who Are You Read more…

How did the deployment of DNSSEC go within the .GOV top-level domain? What kind of errors were found in the deployment?  What lessons were learned?  If they could start it all again, what would they do differently? These were all questions discussed by Scott Rose of the US NIST in a talk last December at Read more…

Congratulations to both the Christmas Islands and Thailand for the DNSSEC-signing of two more top-level domains (TLDs): .CX   (Christmas Islands) .ไทย  (Thailand) In the case of Thailand, their .TH domain was already signed with DNSSEC, but this is now the internationalized domain name (IDN) for .TH. These two new signed TLDs bring the count to Read more…