Home / Blogs

DNSSEC Becomes a Reality Today at ICANN Brussels

Ram Mohan

ISOC, PIR and Afilias team at the signing of isoc.org this morning at ICANN 38: Brussels.
Back row (l to r): Roland LaPlante & Dr. Jim Galvin from Afilias. Front row (l to r): Alexa Raad, PIR CEO, Leslie Daigle, ISOC CITO, and Lynn St.Amour, ISOC CEO.
Click to Enlarge
Attendees at the public ICANN meeting in Brussels today heard from over two dozen companies that have implemented or are planning to support DNSSEC, the next-generation standard protocol for secured domain names. It is clearer than ever before that DNSSEC is becoming a reality.

The Public Interest Registry announced that as of this morning the .ORG top-level domain, for which Afilias provides the technical infrastructure, has finalized its deployment of DNSSEC. Registrants of .ORG domains will now be able to generate keys and sign their zones via participating registrars. The Internet Society's ISOC.org address became the first to go live in production, signing their name with their sponsoring registrar NamesBeyond. NamesBeyond also became the first registrar to offer complete DNSSEC deployment in production and presented an easy-to-use user interface design.

In her comments, Lynn St. Amour, the President and CEO of the Internet Society said that she was pleased to be the first organization in the .ORG top level domain to deploy DNSSEC. She said that implementing DNSSEC for the .ORG top-level domain was an important step in ensuring that the Internet serves as a trusted channel for communication and collaboration.

Indeed, the deployment of DNSSEC is one of the most important developments in .ORG's 25-year history and their visionary efforts have pushed an entire industry towards adoption.

Go Daddy publicized its commitment to DNSSEC at the ICANN meeting, telling a crowded meeting hall that it will offer a managed DNSSEC service to its customers later this year. An additional 11 registrars have completed operational testing to offer DNSSEC-signed .ORG domains to their customers.

With ICANN due to sign the DNS root next month, the chain of trust on the Internet is almost complete, all the way from the root to the ISP level. Comcast, which spent over two years testing its own DNSSEC validating resolvers prior to deploying earlier this year, announced today that it will also sign some 650 of its own .ORG domains. Jason Livingood from Comcast encouraged other ISPs to begin their own DNSSEC trials and to rollout DNSSEC in their production resolvers.

While many at the ICANN meeting also heard about the technical challenges of implementing DNSSEC at the registrar and registry levels, and the competitive advantages that can come from being an early adopter, the general consensus emerged that DNSSEC is now something which every player in the domain name industry needs to address.

Paul Vixie, the Chairman of Internet Systems Consortium, which develops BIND software told the workshop that the community was near the tipping point with the root, .ORG, .COM and .NET all being signed or going to sign soon.

By Ram Mohan, Executive Vice President & CTO, Afilias. Mr. Mohan brings over 20 years of technology leadership experience to Afilias and the industry.

Related topics: DNS, DNS Security, Domain Names, Registry Services, ICANN, Security, Top-Level Domains

 
   
WEEKLY WRAP — Get CircleID's Weekly Summary Report by Email:

Comments

To post comments, please login or create an account.

Related Blogs

Related News

Explore Topics

Industry Updates – Sponsored Posts

Afilias Announces Relaunch of .GREEN TLD

Encrypting Inbound and Outbound Email Connections with PowerMTA

New .PROMO Domain Sunrise Period Begins Today

US Court Grants DCA Trust's Motion for Preliminary Injunction on .Africa gTLD

Minds + Machines Group Announces Outsourcing Agreements, Web Address Change

.STORE Opens its Doors to Brands

Resilient Cybersecurity: Dealing with On-Premise, Cloud-Based and Hybrid Security Complexities

Startup on .TECH New Top-Level Domain Receives $6.7 Million in Funding

What Holds Firms Back from Choosing Cloud-Based External DNS?

United States Court Has Granted an Interim Relief for DCA Trust on .Africa gTLD

Verisign Releases Q4 2015 DDoS Trends - DDoS Attack Activity Increasing by 85% Year Over Year

February Biggest Month to Date for Radix, Over 750K Domain Registrations

Best Practices from Verizon - Proactively Mitigating Emerging Fraudulent Activities

Radix & WHMCS Offer Free .HOST Domains to All WHMCS Customers

New .BET Domain Now Available to the Public

Radix and SnapNames Announce Exclusive Partnership

Neustar Data Identifies Most Popular Times of Year for DDoS Attacks in 2015

Radix Gives Its TLD .SPACE a Makeover

The Framework for Resilient Cybersecurity (Webinar)

New .PET Domain Available to the Public

Sponsored Topics

Afilias - Mobile & Web Services

Mobile

Sponsored by
Afilias - Mobile & Web Services
Afilias

DNS Security

Sponsored by
Afilias
Port25

Email

Sponsored by
Port25
Verisign

Security

Sponsored by
Verisign