Few technologies are more critical to the operation of the Internet than the Domain Name System (DNS). DNS Security (DNSSEC) is designed to authenticate DNS response data. It verifies responses to ensure a DNS server’s response is what the zone administrator intended. It does not address all threats (nothing does), but it provides a building block for providing additional data security, and not just within the DNS but also within the applications and services that are built on it. Browse the links below to find the information you need to deploy DNSSEC today.

If you know very little about DNSSEC, you may want to start with this video interview that covers the basics of DNSSEC:

If you are just looking for information about how to sign your domain with DNSSEC, you may want to start with our list of tutorials about signing your domain using various domain name registrars.

Click on the category heading below to see ALL resources in that category. Otherwise the most recent 5 resources are displayed.

Information

• NIST Secure Domain Name System (DNS) Deployment Guide
• Video: How DNSSEC Works
• DNSSEC RFCs

Other Sites

• DNSsexy.net - News from the DNS blogosphere
• NIST IPv6 and DNSSEC Statistics
• Site: DNSSEC Deployment Initiative
• DNSSEC Statistics

Tools

• CZ.NIC Labs Launchs DNSSEC Validator Extension for Internet Explorer
• Knot DNS - New DNS server supporting DNSSEC
• Fedora Project Requesting Testers of DNSSEC-Trigger
• Need A Weekend Project? Install The New DNSSEC-Trigger 0.10 Release
• DNSSEC And The Challenge Of Modern Websites

Training

• NLnet Labs Makes Their DNSSEC Training Materials Freely Available For All To Use
• DNSSEC Training: Internet Systems Consortium (ISC)
• DNSSEC Training: NLnet Labs Course Materials (Slides)
• DNSSEC Train-The-Trainer From NLnet Labs Feb 9-10 and Feb 16-17
• DNSSEC Training

Tutorials

• Want to understand DNSSEC? Watch this excellent 1-hour elearning video.
• DNSSEC HOWTO, a tutorial in disguise
• ENISA: Good Practices Guide For Deploying DNSSEC
• Step-By-Step: How To Use a DNSSEC DS Record to Link a Registar To A DNS Hosting Provider
• How To Sign Your Domain With DNSSEC Using Dyn, Inc

Videos

• Want to Understand DNSSEC? Watch this video interview...
• Video: Why DNSSEC Matters - An Interview with Joe Klein
• Video/Slides - DNSSEC: How to deploy it, and why you should bother
• Video: How DNSSEC Works
• Video: Comcast DNS Security (DNSSEC) Public Service Announcement

Whitepapers

• FCC Publishes DNSSEC Recommendations for ISPs
• FCC DNSSEC Implementation Guidlines for ISPs
• New Paper - "Challenges and Opportunities in Deploying DNSSEC" at SATIN 2012
• Whitepaper: Challenges and Opportunities in Deploying DNSSEC
• Whitepaper: .SE Health Status Report on DNS and DNSSEC