Home / Industry

Registrar DNSSEC Implementation Cheat Sheet

At the Public Interest Registry, our continued commitment to security is rooted in ensuring our Registrars can protect their customers from attacks such as pharming, cache poisoning, DNS redirection, and domain hijacking. We recently announced that three of our registrars, GoDaddy, DYNDNS.com, and NamesBeyond, have adopted DNSSEC and are offering added security protection to their customers. To ensure that all of our registrars know what to consider as they plan out their DNSSEC implementation, I wanted to highlight a "Registrar Implementation Cheat Sheet," written by Shinkuro and Sparta that outlines operational considerations a Registrar should review, including important topics such as NSEC vs. NSEC3, Key Length, and Key Rollovers, as they plan their DNSSEC implementation.

The "cheat sheet," created with the help of our "Friends and Family Registrars," provides those that manage a name service for their customers, a reasonable set of DNSSEC configuration parameters. The goal is to identify configuration parameters that provide effective security without causing an undue burden on Registrars' authoritative name service infrastructure.

At last count twenty six have passed OT&E, as our Registrars begin to make DNSSEC implementation a reality for their sites, , this "cheat sheet" is a must read and will prove to be a valuable tool and guide to ensure that appropriate steps are taken.

Written by Lauren Price, Sr. Product Marketing Manager, .ORG, The Public Interest Registry.

About PIR

PIR

Trusted across all ages, backgrounds and nationalities, .ORG is where people turn to find credible information, get involved, fund causes and support advocacy. .ORG, The Public Interest Registry empowers the global noncommercial community to use the Internet more effectively and, concurrently, takes a leadership position among Internet stakeholders on policy and related issues on behalf of the .ORG Community. (Learn More)

Related topics: DNS, DNS Security, Domain Names, Registry Services, Security, Top-Level Domains

WEEKLY WRAP — Get CircleID's Weekly Summary Report by Email:

Related Blogs

Related News

Topics

Industry Updates – Sponsored Posts

General Availability Period for New .RED Top-Level Domain Opens

General Availability Period for New .BLUE Top-Level Domain Opens

General Availability Period for New .PINK Top-Level Domain Opens

New Chinese "Mobile" Top-Level Domain Now Available

New .KIM Domain Goes Live

Welcome .SHIKSHA! General Availability Now Open

Adrian Kinderis Appointed as Chair of Domain Name Association

Internet Reaches 271 Million Domain Names in the Fourth Quarter of 2013

Why We Decided to Stop Offering Free Accounts

The Future of Chinese Domain Names (a Panel Discussion)

dotStrategy Selects Neustar's Registry Threat Mitigation Services for .BUZZ Registry

Tony Kirsch Announced As Head of Global Consulting of ARI Registry Services

24 Million Home Routers Expose ISPs to Massive DNS-Based DDoS Attacks

Afilias Chairman Appointed to Domain Name Association Board

.BUILD Enters Landrush with Support of ARI Registry Services

Dyn Acquires Managed DNS Provider Nettica

Radix Awards Contracts for .website, .host, .space, and .press to CentralNic plc

Afilias Welcomes "Dot Chinese Online" and "Dot Chinese Website" Top-Level Domains to the Internet

What Does a DDoS Attack Look Like? (Watch First 3 Minutes of an Actual Attack)

Joining Forces to Advance Protection Against Growing Diversity of DDoS Attacks

Sponsored Topics