Few technologies are more critical to the operation of the Internet than the Domain Name System (DNS). DNS Security (DNSSEC) is designed to authenticate DNS response data. It verifies responses to ensure a DNS server’s response is what the zone administrator intended. It does not address all threats (nothing does), but it provides a building block for providing additional data security, and not just within the DNS but also within the applications and services that are built on it. Browse the links below to find the information you need to deploy DNSSEC today.
If you know very little about DNSSEC, you may want to start with this video interview that covers the basics of DNSSEC:
If you are just looking for information about how to sign your domain with DNSSEC, you may want to start with our list of tutorials about signing your domain using various domain name registrars.
Click on the category heading below to see ALL resources in that category. Otherwise the most recent 5 resources are displayed.
Information
- DNSSEC Policy & Practice Statements (DPS)
- NIST Secure Domain Name System (DNS) Deployment Guide
- Video: How DNSSEC Works
- DNSSEC RFCs
Other Sites
- Use Reddit and interested in DNSSEC? Subscribe to the ‘dnssecurity’ subreddit
- DNSsexy.net – News from the DNS blogosphere
- NIST IPv6 and DNSSEC Statistics
- Site: DNSSEC Deployment Initiative
- DNSSEC Statistics
Tools
- Google Clarifies DNSSEC Support – Opt In Now, Full Validation Coming Soon
- Google Public DNS – DNSSEC Validation
- Huge News For Internet Security – Google Public DNS Is Now Performing DNSSEC Validation!
- PowerDNS Releases Version 3.2 With Increased DNSSEC Support
- Weekend Project: Add DNSSEC Validation to an OpenWRT WiFi Device
Training
- APNIC Offering DNSSEC Training in Mongolia April 1-3
- 5 DNSSEC Training/Technical Sessions at USENIX LISA Next Week In San Diego
- DNSSEC Training: Men and Mice
- Looking for DNSSEC Training? Here Is Some Courseware…
- NLnet Labs Makes Their DNSSEC Training Materials Freely Available For All To Use
Tutorials
- “Introduction To DNSSEC” Animated Videos Uploaded To YouTube
- Excellent whitepaper/tutorial from SURFnet on deploying DNSSEC-validating DNS servers
- Deploying DNSSEC: Validation on recursive caching name servers
- Want to understand DNSSEC? Watch this excellent 1-hour elearning video.
- DNSSEC HOWTO, a tutorial in disguise
Videos
- Video – DNSSEC Deployment In The .GOV TLD (LISA 2012)
- Video: Advancing the Network – Where We’ve Been, Where We’re Headed (ION San Diego)
- Video: What are “Negative Trust Anchors” for DNSSEC?
- “Introduction To DNSSEC” Animated Videos Uploaded To YouTube
- Video – DNSSEC Deployment: From End-Customer To Content (ION San Diego)
Whitepapers
- Excellent whitepaper/tutorial from SURFnet on deploying DNSSEC-validating DNS servers
- Deploying DNSSEC: Validation on recursive caching name servers
- FCC Publishes DNSSEC Recommendations for ISPs
- FCC DNSSEC Implementation Guidlines for ISPs
- New Paper – “Challenges and Opportunities in Deploying DNSSEC” at SATIN 2012
[...] DNSSEC [...]
[...] DNSSEC [...]
[...] DNSSEC [...]
[...] DNSSEC [...]
[...] DNSSEC [...]
[...] “why do I need to do this” to “how, specifically, do I do this?” We cover both IPv6 and DNSSEC topics in a web portal with detailed, technical how-to documents, tutorials, case studies, etc., [...]
[...] DNSSEC [...]
[...] zu diesem Thema. Viele nützliche Informationen werden von der Internet Society unter der URL http://www.internetsociety.org/deploy360/dnssec/ [...]