Deploy360 5 December 2014

Congratulations To .NL For Passing 2 Million DNSSEC-Signed Domains

By Dan YorkDirector, Internet Technology

Congratulations to the team at SIDN and all the .NL registrars and DNS hosting providers for the fact that there are now 2 million .NL domain names secured by DNSSEC!  Yesterday as the SIDN team apparently became aware that a large registrar/DNS hosting provider was going to be signing .NL domain names, Kees Monshouwer set up a website that showed an ongoing countdown to when they projected passing the 2 million DNSSEC-signed domain mark.  If you go there now, of course, you see that they’ve passed 2 million domains:

nl-2-million

But yesterday the countdown was underway:

nl-approaching-2-million

It was fun to watch yesterday from time to time… and a definite congratulations to the teams at all the various organizations.

As the news announcement from SIDN (in Dutch) explains, this represents over 36% of the 5.5 million .NL domains now secured with DNSSEC!  The announcement also explains a bit about how this was accomplished.  SIDN, the operator of the .NL registry, offered a financial incentive where .NL domain names are less expensive if they are signed with DNSSEC.  Given that incentive, a number of large registrars who also do DNS hosting set up their DNS systems to do bulk signing of the .NL domain names.  The end result is that their customers are now getting the added security of DNSSEC without the customers needing to do anything more.

This model may or may not work for other top-level domain (TLD) registries, but it certainly has worked well for .NL.  The tweets were fun to see today – among them:

and

https://twitter.com/PowerDNS_Bert/status/540758906713436160

Congrats again… and if YOU want to get started with signing your domain (from whatever TLD), please take a look at our Start Here page to find resources available to you!

 

Disclaimer: Viewpoints expressed in this post are those of the author and may or may not reflect official Internet Society positions.

Related articles

Improving Technical Security 15 March 2019

DNS Privacy Frequently Asked Questions (FAQ)

We previously posted about how the DNS does not inherently employ any mechanisms to provide confidentiality for DNS transactions,...

Improving Technical Security 14 March 2019

Introduction to DNS Privacy

Almost every time we use an Internet application, it starts with a DNS (Domain Name System) transaction to map...

Improving Technical Security 13 March 2019

IPv6 Security for IPv4 Engineers

It is often argued that IPv4 practices should be forgotten when deploying IPv6, as after all IPv6 is a...