Home / Blogs

DNSSEC Becomes a Reality Today at ICANN Brussels

Ram Mohan

ISOC, PIR and Afilias team at the signing of isoc.org this morning at ICANN 38: Brussels.
Back row (l to r): Roland LaPlante & Dr. Jim Galvin from Afilias. Front row (l to r): Alexa Raad, PIR CEO, Leslie Daigle, ISOC CITO, and Lynn St.Amour, ISOC CEO.
Click to Enlarge
Attendees at the public ICANN meeting in Brussels today heard from over two dozen companies that have implemented or are planning to support DNSSEC, the next-generation standard protocol for secured domain names. It is clearer than ever before that DNSSEC is becoming a reality.

The Public Interest Registry announced that as of this morning the .ORG top-level domain, for which Afilias provides the technical infrastructure, has finalized its deployment of DNSSEC. Registrants of .ORG domains will now be able to generate keys and sign their zones via participating registrars. The Internet Society's ISOC.org address became the first to go live in production, signing their name with their sponsoring registrar NamesBeyond. NamesBeyond also became the first registrar to offer complete DNSSEC deployment in production and presented an easy-to-use user interface design.

In her comments, Lynn St. Amour, the President and CEO of the Internet Society said that she was pleased to be the first organization in the .ORG top level domain to deploy DNSSEC. She said that implementing DNSSEC for the .ORG top-level domain was an important step in ensuring that the Internet serves as a trusted channel for communication and collaboration.

Indeed, the deployment of DNSSEC is one of the most important developments in .ORG's 25-year history and their visionary efforts have pushed an entire industry towards adoption.

Go Daddy publicized its commitment to DNSSEC at the ICANN meeting, telling a crowded meeting hall that it will offer a managed DNSSEC service to its customers later this year. An additional 11 registrars have completed operational testing to offer DNSSEC-signed .ORG domains to their customers.

With ICANN due to sign the DNS root next month, the chain of trust on the Internet is almost complete, all the way from the root to the ISP level. Comcast, which spent over two years testing its own DNSSEC validating resolvers prior to deploying earlier this year, announced today that it will also sign some 650 of its own .ORG domains. Jason Livingood from Comcast encouraged other ISPs to begin their own DNSSEC trials and to rollout DNSSEC in their production resolvers.

While many at the ICANN meeting also heard about the technical challenges of implementing DNSSEC at the registrar and registry levels, and the competitive advantages that can come from being an early adopter, the general consensus emerged that DNSSEC is now something which every player in the domain name industry needs to address.

Paul Vixie, the Chairman of Internet Systems Consortium, which develops BIND software told the workshop that the community was near the tipping point with the root, .ORG, .COM and .NET all being signed or going to sign soon.

By Ram Mohan, Executive Vice President & CTO, Afilias. Mr. Mohan brings over 20 years of technology leadership experience to Afilias and the industry.

Related topics: Cybersecurity, DNS, DNS Security, Domain Names, ICANN, Registry Services, Top-Level Domains

 
   

Don't miss a thing – get the Weekly Wrap delivered to your inbox.

Comments

To post comments, please login or create an account.

Related Blogs

Related News

Explore Topics

Dig Deeper

Verisign

Cybersecurity

Sponsored by Verisign
Afilias Mobile & Web Services

Mobile Internet

Sponsored by Afilias Mobile & Web Services
Afilias

DNS Security

Sponsored by Afilias

Promoted Posts

Now Is the Time for .eco

.eco launches globally at 16:00 UTC on April 25, 2017, when domains will be available on a first-come, first-serve basis. .eco is for businesses, non-profits and people committed to positive change for the planet. See list of registrars offering .eco more»

Industry Updates – Sponsored Posts

Global Domain Name Registrations Reach 330.6 Million, 1.3 Million Growth in First Quarter of 2017

.TECH Gets Its Big Hollywood Break

Verisign Named to the Online Trust Alliance's 2017 Audit and Honor Roll

Why the Record Number of Reverse Domain Name Hijacking UDRP Filings in 2016?

Attacks Decrease by 23 Precent in 1st Quarter While Peak Attack Sizes Increase: DDoS Trends Report

UDRP: Better Late than Never - ICA Applauds WIPO for Removing Misguided 'Retroactive Bad Faith'

The Rise and Fall of the UDRP Theory of 'Retroactive Bad Faith'

.PRESS Supports Press Freedom Day for 3rd Consecutive Year

Leading Internet Associations Strengthen Cooperation

5 Afilias Top Level Domains Now Licensed for Sale in China

Radix Announces Largest New gTLD Sale with Casino.Online

2016 Year in Review: The Trending Keywords in .COM and .NET Domain Registrations

Global Domain Name Registrations Reach 329.3 Million, 2.3 Million Growth in Last Quarter of 2016

A Look at How the New .SPACE TLD Has Performed Over the Past 2 Years

Verisign Releases Q4 2016 DDoS Trends Report: 167% Increase in Average Peak Attack from 2015 to 2016

Neustar to be Acquired by Private Investment Group Led by Golden Gate Capital

Startup League Reports from WebSummit, Lisbon

Verisign Q3 2016 DDoS Trends Report: User Datagram Protocol (UDP) Flood Attacks Continue to Dominate

2016 U.S. Election: An Internet Forecast

.SPACE Becomes the Choice of the First Ever Space Nation Asgardia