Slashdot Mirror

← Back to Stories (view on slashdot.org)

DNSSEC Advances in gTLDs; Bernstein Intros DNSCurve

Posted by kdawson on from the what-hath-kaminsky-wrought dept.

coondoggie writes "Seven leading domain name vendors — representing more than 112 million domain names, or 65% of all registered names — have formed an industry coalition to work together to adopt DNSSEC. Members of the DNSSEC Industry Coalition include: VeriSign, which operates the .com and .net registries; NeuStar, which operates the .biz and .us registries; .info operator Afilias Limited; .edu operator EDUCAUSE; and The Public Interest Registry, which operates .org." The gTLD operators are falling in line behind government initiatives, which we discussed last month. In light of these developments, Dan Bernstein's push for DNSCurve might face an uphill slog. Reader data2 writes: "Dan Bernstein, the creator of djbdns and daemontools, has created his own proposal to improve upon the current DNS protocol. He has been opposed to DNSSEC for quite some time, and now he has proposed a concrete alternative, DNSCurve. He has posted a comparison between the two systems. His proposal makes use of elliptic curves, while DNSSEC favors RSA. He uses a curve named Curve25519, which he also developed."

4 of 179 comments (clear)

  1. Re:Slow down there by glop · · Score: 4, Informative

    Bernstein says that RSA-1024 bit is not secure as big botnets (or big companies) can break such keys.
    That would defeat the purpose of DNSSEC.
    I wonder what this means for SSL certificates...
    RSA has a wrapup here:
    http://www.rsa.com/rsalabs/node.asp?id=2007
    Apparently they disagree...

  2. Re:Slow down there by Twylite · · Score: 4, Informative

    ECC is not a new crypto algorithm. It has been around since 1985, it is will studied, and it is recommended for use in the US (NIST, NSA Suite B), in the EU (NESSIE project falling under the European Commission), and in Japan (CRYPTREC government project).

    Bernstein has created a new curve for use with ECC; one that is better suited to the requirements of this particular application than other existing curves. He claims to have followed the appropriate practices in generating this curve -- that obviously needs to be verified by suitably knowledgeable experts.

    The "existing algorithm" is RSA, specifically RSASSA-PKCS1-v1_5. There are more secure signature schemes available for RSA, e.g. RSA-PSS. In addition DNSSEC will use 1024-bit RSA keys as a compromise (to reduce transfer size and computational overhead) -- NIST recommendations are that 1024 bits are too short for any purpose.

    DNS forgeries are already having a significant impact - keep your eyes on the security reports.

    --
    i-name =twylite [http://public.xdi.org/=twylite], see idcommons.net
  3. Re:Slow down there by harlows_monkeys · · Score: 4, Informative

    This Bernstein guy is pushing a new crypto algorithm

    No, he is not. He's using an old, well-tested, well-studied algorithm, generally believed among cryptographers to be more secure than RSA.

  4. Re:Slow down there by Just+Some+Guy · · Score: 4, Informative

    You are mistaken. Go to tinydns.org and read

    I did. That isn't the official version of djbdns; it's a fork. Furthermore, note that even the "enhanced" fork fails to support such fundamental necessities as IXFR. You can hobble together some hackish workalike with rsync - assuming you have control over both servers. Good luck getting a registrar or any other free/cheap DNS hosting service to go along with that arrangement.

    As always, djbdns is probably OK as long as you don't need any of the (common) features it doesn't support. If you do, it stops looking so clever.

    --
    Dewey, what part of this looks like authorities should be involved?