Slashdot Mirror

← Back to Stories (view on slashdot.org)

ICANN and NIST Announce Plans To Sign the DNS Root

Posted by timothy on Thursday June 4, 2009 @12:29PM from the no-more-absolute-value dept.

jhutkd writes "On June 3rd, 2009, ICANN and NIST announced formal plans to use DNSSEC to sign the DNS root zone by the end of 2009. This is a huge step forward for the deployment of DNSSEC."

1 of 94 comments (clear)

Min score:

Reason:

Sort:

the problem with securing DNS is the DNS is secure by wayne · 2009-06-04 13:45 · Score: 5, Interesting

The big problem with DNSSEC, if widely used, is that it prevents forgery of DNS responses. ISPs and internet cafes will not like this, since that means they can no longer forget DNS replies to missing domains or to force people through registration pages. I can see a *LOT* of push-back from having end-users using DNSSEC.

--
SPF support for most open source mail servers can be found at libspf2.