We were delighted to learn from Garth Miller, the administrative contact for the .CX top-level domain (TLD), that 6 more TLDs have been signed with DNSSEC and now have DS records in the root zone. This means that people and businesses with domains registered in these TLDs can now receive the higher level of security possible with DNSSEC:
- CX – Christmas Island – http://dnsviz.net/d/dnssec.cx/dnssec/
- GS – South Georgia and South Sandwich Islands – http://dnsviz.net/d/dnssec.gs/dnssec/
- HN – Hondurus – http://dnsviz.net/d/dnssec.hn/dnssec/
- NF – Norfolk Island – http://dnsviz.net/d/dnssec.nf/dnssec/
- SB – Solomon Islands – http://dnsviz.net/d/dnssec.sb/dnssec/
- TL – Timor-Leste (also known as East Timor) – http://dnsviz.net/d/dnssec.tl/dnssec/
If you have a domain registered in those TLDs, your registrar should now be able to pass the required DS record up to the TLD registry. (See our page about registrars and DNSSEC for more information about this process with some registrars.) If your registrar does not yet support the uploading of DNSSEC information, now would be a great time to start asking them! 🙂
Congratulations to Garth Miller and the teams associated with the various TLDs for making these signed TLDs happen. Per ICANN’s TLD Report, there are now 111 out of 318 TLDs signed which is excellent progress. (These new signed TLDs are also visible on the DNSSEC deployment maps we recently published.)
P.S. Bonus points if you know where all the islands are! I had to pull out a map for a couple of them.