Donate
‹ Back
Deploy360 23 March 2012

New Paper – “Challenges and Opportunities in Deploying DNSSEC” at SATIN 2012

By Dan York Senior Manager, Content and Web Strategy

This morning at the SATIN 2012 conference in London I (Dan York) will be speaking on the topic of “challenges and opportunities in deploying DNSSEC“. Basically I’ll be providing a view of our experience here at Deploy360 over the past 6 months in looking at how to accelerate the deployment of DNSSEC.  As we have been building up our list of DNSSEC resources, we’ve been taking a look at DNSSEC from the “user experience” point of view.  What are the pain points for network operators? for developers? for content providers? for enterprises?

Where are the opportunities to simplify the user experience and make it easier to deploy DNSSEC?

As part of this presentation at SATIN 2012, we created a 7-page paper documenting our findings.  You can download the PDF of this document at:

Challenges and Opportunities in Deploying DNSSEC (SATIN 2012)

As I note on the “resource” page for this paper, we look at the issue from the perspective of:

  • Domain name consumers – any person or application that is using a domain name.
  • Domain name holders – people or organizations who have registered a domain and, in the context of DNSSEC, want to sign the domain.
  • Domain name infrastructure operators – people or organizations that provide the actual service behind the Domain Name System and have a role to play in the DNSSEC signing and validation processes.

Creating the paper was a very useful process in that it helped us identify some of the places where we can add value through the Deploy360 program in the form of new DNSSEC tutorials, HOWTOs and other documents.  I hope that it will be helpful for others out there who are also looking at ways to help accelerate DNSSEC deployment.

I’d very much love to hear any and all feedback on the document.  This is very much a “progress report” of what we have found at this point in time and I expect the list of both challenges and opportunities to evolve over time.

What do you think of the list in this document?  Do you agree? Disagree?  Can you think of other opportunities for simplifying the user experience with DNSSEC?

Again, I’d love to hear from you, either as comments to this post, email to deploy360@isoc.org or via our feedback form

‹ Back

Related articles

Speaking at SATIN 2012 on Friday About DNSSEC Deployment
Deploy36020 March 2012

Speaking at SATIN 2012 on Friday About DNSSEC Deployment

This Thursday and Friday I (Dan York) will be at the "Securing and Trusting Internet Names (SATIN) 2012" event taking...

State of DNSSEC Deployment 2016 report shows over 89% of top-level domains signed
State of DNSSEC Deployment 2016 report shows over 89% of top-level domains signed
Domain Name System Security Extensions (DNSSEC)4 January 2017

State of DNSSEC Deployment 2016 report shows over 89% of top-level domains signed

Did you know that 89% of top-level domains are now signed with DNSSEC? Or that over 88% of .GOV domains...

Report on ICANN50 DNSSEC Workshop: CloudFlare, HSMs, OTR Demos and more...
Deploy3603 July 2014

Report on ICANN50 DNSSEC Workshop: CloudFlare, HSMs, OTR Demos and more…

We had an outstanding DNSSEC Workshop last Wednesday, June 25 ,2014, at ICANN 50 in London.  This was the "big" session...

Join the conversation with Internet Society members around the world