‹ Back
Deploy360 23 March 2012

New Paper – “Challenges and Opportunities in Deploying DNSSEC” at SATIN 2012

Dan York
By Dan YorkDirector of Web Strategy

This morning at the SATIN 2012 conference in London I (Dan York) will be speaking on the topic of “challenges and opportunities in deploying DNSSEC“. Basically I’ll be providing a view of our experience here at Deploy360 over the past 6 months in looking at how to accelerate the deployment of DNSSEC.  As we have been building up our list of DNSSEC resources, we’ve been taking a look at DNSSEC from the “user experience” point of view.  What are the pain points for network operators? for developers? for content providers? for enterprises?

Where are the opportunities to simplify the user experience and make it easier to deploy DNSSEC?

As part of this presentation at SATIN 2012, we created a 7-page paper documenting our findings.  You can download the PDF of this document at:

Challenges and Opportunities in Deploying DNSSEC (SATIN 2012)

As I note on the “resource” page for this paper, we look at the issue from the perspective of:

  • Domain name consumers – any person or application that is using a domain name.
  • Domain name holders – people or organizations who have registered a domain and, in the context of DNSSEC, want to sign the domain.
  • Domain name infrastructure operators – people or organizations that provide the actual service behind the Domain Name System and have a role to play in the DNSSEC signing and validation processes.

Creating the paper was a very useful process in that it helped us identify some of the places where we can add value through the Deploy360 program in the form of new DNSSEC tutorials, HOWTOs and other documents.  I hope that it will be helpful for others out there who are also looking at ways to help accelerate DNSSEC deployment.

I’d very much love to hear any and all feedback on the document.  This is very much a “progress report” of what we have found at this point in time and I expect the list of both challenges and opportunities to evolve over time.

What do you think of the list in this document?  Do you agree? Disagree?  Can you think of other opportunities for simplifying the user experience with DNSSEC?

Again, I’d love to hear from you, either as comments to this post, email to or via our feedback form

‹ Back

Disclaimer: Viewpoints expressed in this post are those of the author and may or may not reflect official Internet Society positions.

Related articles

Speaking at SATIN 2012 on Friday About DNSSEC Deployment
Deploy36020 March 2012

Speaking at SATIN 2012 on Friday About DNSSEC Deployment

This Thursday and Friday I (Dan York) will be at the "Securing and Trusting Internet Names (SATIN) 2012" event taking...

Watch Live NOW - DNSSEC Workshop From ICANN52 In Singapore
Deploy36011 February 2015

Watch Live NOW – DNSSEC Workshop From ICANN52 In Singapore

What is happening with DNSSEC in the Asia-Pacific region? What are DNSSEC and DANE all about, anyway? What challenges are...

BT Releases Results of 2014 DNSSEC Survey
Deploy36017 December 2014

BT Releases Results of 2014 DNSSEC Survey

BT Diamond IP just published the results of their 2014 DNSSEC survey and the report is available for all to...

Join the conversation with Internet Society members around the world