Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Get HideMyAss! VPN, PC Mag's Top 10 VPNs of 2016 for 55% off for a Limited Time ×
The Internet

Submission + - DNSSEC on all root servers (h-online.com)

suraj.sun writes: Wednesday, (May-05,'10) the last of the 13 authoritative root servers for the domain name system switched over to the DNS Security Extensions (DNSSEC) security protocol. DNSSEC is intended to prevent DNS exploits such as cache poisoning. All 13 root servers are now serving a signed version of the root zone. However, it is not possible to validate these signatures at present as the public key remains undisclosed. This precautionary measure is intended to ensure that for the time being it remains possible to switch back to an unsigned root zone, should the need arise.

There have been no reports of any problems in the immediate aftermath of VeriSign's J root server starting to serve DNSSEC signatures. Experts at the 60th RIPE meeting in Prague were almost unanimous in predicting a glitch-free switchover, following the successful switchovers of the other 12 root servers in recent months.

H-Online: http://www.h-online.com/security/news/item/DNSSEC-on-all-root-servers-994744.html

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

DNSSEC on all root servers

Comments Filter:

Everybody likes a kidder, but nobody lends him money. -- Arthur Miller

Working...