Yostivanich

ISC joined other key par­tic­i­pants of the inter­net tech­ni­cal com­mu­nity in cel­e­brat­ing the achieve­ment of a sig­nif­i­cant mile­stone for the Domain Name Sys­tem today as the root zone was dig­i­tally signed for the first time. This marked the deploy­ment of the DNS Secu­rity Exten­sions (DNSSEC) at the top level of the DNS hier­ar­chy and ush­ers the way for­ward for fur­ther roll-out of DNSSEC in the top level domains and DNS Ser­vice Providers.

The DNS Secu­rity Exten­sions, DNSSEC, extends stan­dard DNS to prove data came from an author­i­ta­tive source and has not been mod­i­fied, thwart­ing the so called ‘man-in-the-middle attack’ and enabling the devel­op­ment of more secure inter­net appli­ca­tions and trans­ac­tion pro­cess­ing. DNSSEC adds new resource records and mes­sage header bits which can be used to ver­ify that the received DNS data matches the orig­i­nal data, and has not been altered in transit.

via Inter­net Sys­tems Con­sor­tium – ISC Praises Momen­tous Step For­ward in Secur­ing the Domain Name Sys­tem. This is an impor­tant step towards the secu­rity of the inter­net. DNS is the basic address sys­tem of the inter­net and DNSSEC essen­tially allows for addresses to be val­i­dated and ensure that the web­site you are going to, is the cor­rect web site.