Home / Industry

Registrar DNSSEC Implementation Cheat Sheet

At the Public Interest Registry, our continued commitment to security is rooted in ensuring our Registrars can protect their customers from attacks such as pharming, cache poisoning, DNS redirection, and domain hijacking. We recently announced that three of our registrars, GoDaddy, DYNDNS.com, and NamesBeyond, have adopted DNSSEC and are offering added security protection to their customers. To ensure that all of our registrars know what to consider as they plan out their DNSSEC implementation, I wanted to highlight a "Registrar Implementation Cheat Sheet," written by Shinkuro and Sparta that outlines operational considerations a Registrar should review, including important topics such as NSEC vs. NSEC3, Key Length, and Key Rollovers, as they plan their DNSSEC implementation.

The "cheat sheet," created with the help of our "Friends and Family Registrars," provides those that manage a name service for their customers, a reasonable set of DNSSEC configuration parameters. The goal is to identify configuration parameters that provide effective security without causing an undue burden on Registrars' authoritative name service infrastructure.

At last count twenty six have passed OT&E, as our Registrars begin to make DNSSEC implementation a reality for their sites, , this "cheat sheet" is a must read and will prove to be a valuable tool and guide to ensure that appropriate steps are taken.

Written by Lauren Price, Sr. Product Marketing Manager, .ORG, The Public Interest Registry.

About PIR

PIR

Public Interest Registry is a nonprofit corporation that operates the .org top-level domain – the world's third largest "generic" top-level domain with more than 10 million domain names registered worldwide. As an advocate for collaboration, safety and security on the Internet, Public Interest Registry's mission is to empower the global noncommercial community to use the Internet more effectively, and to take a leadership position among Internet stakeholders on policy and other issues relating to the domain naming system. Learn More

Related topics: DNS, DNS Security, Domain Names, Registry Services, Security, Top-Level Domains

 
   
WEEKLY WRAP — Get CircleID's Weekly Summary Report by Email:

Related Blogs

Related News

Explore Topics

Industry Updates – Sponsored Posts

Afilias Announces Relaunch of .GREEN TLD

Encrypting Inbound and Outbound Email Connections with PowerMTA

New .PROMO Domain Sunrise Period Begins Today

US Court Grants DCA Trust's Motion for Preliminary Injunction on .Africa gTLD

Minds + Machines Group Announces Outsourcing Agreements, Web Address Change

.STORE Opens its Doors to Brands

Resilient Cybersecurity: Dealing with On-Premise, Cloud-Based and Hybrid Security Complexities

Startup on .TECH New Top-Level Domain Receives $6.7 Million in Funding

What Holds Firms Back from Choosing Cloud-Based External DNS?

United States Court Has Granted an Interim Relief for DCA Trust on .Africa gTLD

Verisign Releases Q4 2015 DDoS Trends - DDoS Attack Activity Increasing by 85% Year Over Year

February Biggest Month to Date for Radix, Over 750K Domain Registrations

Best Practices from Verizon - Proactively Mitigating Emerging Fraudulent Activities

Radix & WHMCS Offer Free .HOST Domains to All WHMCS Customers

New .BET Domain Now Available to the Public

Radix and SnapNames Announce Exclusive Partnership

Neustar Data Identifies Most Popular Times of Year for DDoS Attacks in 2015

Radix Gives Its TLD .SPACE a Makeover

The Framework for Resilient Cybersecurity (Webinar)

New .PET Domain Available to the Public

Sponsored Topics

Afilias - Mobile & Web Services

Mobile

Sponsored by
Afilias - Mobile & Web Services
Verisign

Security

Sponsored by
Verisign
Afilias

DNS Security

Sponsored by
Afilias
Port25

Email

Sponsored by
Port25