Video: Highlights of the DNSSEC Key Signing Ceremony

Home
Blogs
Latest Recently Discussed Most Discussed Most Viewed
News
Latest Recently Discussed Most Discussed Most Viewed
Industry
Latest Most Viewed Leaderboard Participants: .CO Internet .INFO .ORG, Public Internet Registry Afilias Architelos ARI Registry Services BlueCat Networks CentralNic Cloud Registry DotConnectAfrica dotMobi Dyn Inc. Hostway MarkMonitor Neustar Minds + Machines Nixu Software RegistryPro Sedari Verisign
Community
Recently Featured Most Featured Most Active Most Read Recent Members Top 100 Leaderboard Alphabetical View Random View Recent Comments

Home / News

Video: Highlights of the DNSSEC Key Signing Ceremony

Jun 21, 2010 9:36 AM PST
Comments: 1
Views: 5,853

Print Comment

By CircleID Reporter

Video: Highlights of the DNSSEC Key Signing Ceremony

ICANN video highlighting last week's historical DNSSEC key signing ceremony held in a high security data centre located in Culpeper, VA, outside of Washington, DC.

"During the ceremony, participants were present within a secure facility and witnessed the preparations required to ensure that the so-called key-signing-key (KSK) was not only generated correctly, but that almost every aspect of the equipment, software and procedures associated with its generation were also verified to be correct and trustworthy."

Related topics: DNS, DNSSEC, ICANN, Security

Print Comment

Comments

SSL has been solving this problem for 15 years Phillip Hallam-Baker – Jul 01, 2010 8:04 AM PST

DNSSEC is important.

But not for the reasons being presented here. SSL already enables end to end authentication of Web Sites.

DNSSEC does not and cannot. Even if we assume BGPSEC is also in place, there is no end-to-end security. DNSSEC merely secures the mapping of DNS name to IP address. The mapping of IP address to Internet endpoint depends (and will continue to depend) on the thousands of AS number assignees.

We could fix DNSSEC to provide end-to-end security, but that alone would be relatively pointless as we can already do that with SSL.

As someone who has run key ceremonies, I would also point out that you do not want the identity of the key share holders to be known as this puts them at personal risk of blackmail, extortion etc. So making a film of the process is counter-productive.

# 1 Reply | Link | Report Problems

To post comments, please login or create an account.

Related Blogs

What Does It Take To Repair Trust? What Will It Take ICANN To Win Back "Trust"? (Part I)

Feb 08, 2012
Comments: 0

Is ICANN Opening up Public Comment Periods in Bad Faith?

Feb 07, 2012
Comments: 1

Phish or Fair?

Feb 07, 2012
Comments: 4

New gTLD Application Monitoring? Now?

Feb 06, 2012
Comments: 1

The FBI and Scotland Yard vs. Anonymous: Security Lessons

Feb 06, 2012
Comments: 0

View More

Related News

DNSChanger Trojan Still Running on Half of Fortune 500s, US Govt

Feb 02, 2012
Comments: 0

Public-Private Cooperation Policy for Cyber Security Suggested by Commissioner Kroes

Jan 31, 2012
Comments: 0

DDoS Attacks Increased by 2000% in Past 3 Years, Asia Generating Over Half of Recent Attacks

Jan 31, 2012
Comments: 0

NASA Website Blocked Due to DNSSEC Error

Jan 25, 2012
Comments: 0

Websites Go Dark Protesting SOPA and PIPA, Senators Change Course

Jan 18, 2012
Comments: 0

View More

Topics

View More

Industry Updates – Sponsored Posts

.ORG COO Discusses Priorities With DailyVista, Pursuit of .NGO Domain

By PIR
Views: 304

StarHub to Acquire '.starhub' New Top-Level Domain

By ARI Registry Services
Views: 906

ARI Registry Services Signs 21 Contracts in the First Week of New TLD Applications

By ARI Registry Services
Views: 661

MarkMonitor to Exhibit at Internet Tech Policy Exhibition and Reception to be Held on Capitol Hill

By MarkMonitor
Views: 608

Sedari Signs With Dot Moscow Bidders

By Sedari
Views: 689

.ORG, The Public Interest Registry Welcomes Nancy Gofus As Chief Operating Officer

By PIR
Views: 692

Minds+Machines Works with .bayern

By Minds + Machines
Views: 624

Verisign to Award New Infrastructure Research Grants

By Verisign
Views: 682

Being a .PRO When Choosing a Registry Services Partner

By Afilias
Views: 557

UK Cabinet Office Looks to BlueCat Networks' Expertise and Best Practices for Securing PSN

By BlueCat Networks
Views: 473

Afilias Acquires Registry Services Corporation, .PRO

By Afilias
Views: 760

Thoughts on Applying for a Generic Top-Level Domain

By Neustar
Views: 1,293

Sedari Launches "Guess the Numbers Game" for New TLD Program

By Sedari
Views: 673

dot Brand Makes Its Debut: Afilias Advises Companies to Act Now for Successful TLD Applications

By Afilias
Views: 672

BlueCat Networks Helps Organizations Transition to IPv6 with HP

By BlueCat Networks
Views: 449

BlueCat Networks to Host Webinar on DNS, DHCP and IPAM Featuring Independent Research Firm

By BlueCat Networks
Views: 623

Facets of gTLD Registry Technical Operations - Registry Services

By Cloud Registry
Views: 710

Technology and Finance Industries to Dominate New gTLD Applications

By ARI Registry Services
Views: 920

Sedari and NCC Launch Programme to Assist New Registry Operators

By Sedari
Views: 725

Nixu SNS 2.5 Series Gives Fresh Views on DNS

By Nixu Software
Views: 467

View More

Hot Topics

Top-Level Domains Sponsored by Minds + Machines
Mobile Sponsored by dotMobi
DNSSEC Sponsored by Afilias
Security Sponsored by Verisign
DNS Sponsored by Neustar UltraDNS

View More

Managed Hosting by
Hostway

DNS Services by
UltraDNS

Sections: Home | Featured Blogs | News Briefs | Industry Updates | Topics | Community
RSS Feeds, Email Updates, Mobile Edition and More: CircleID Extras
About: About CircleID | Media Coverage | CircleID Blog | Contact | Advertising Programs
Terms & Policies: Codes of Conduct | Privacy Policy | Terms of Use

Copyright © 2002-2012 CircleID. Iomemo Inc. All rights reserved unless where otherwise noted.
Local Time: Friday, February 10, 2012 08:13 AM PST – Page Load: 0.4227 Sec.