Slashdot Mirror


DNSSEC Implementation Held Up By Tech Delays

Jack Spine writes "VeriSign has said that the main obstacle to DNSSEC implementation has been technical delays. The large size of the .com and .net domains would have made it impractical to deploy earlier versions of DNSSEC, according to VeriSign vice president of naming services Pat Kane. Deployment of DNSSEC will close a major security flaw in the DNS, the internet's equivalent to a telephone directory. The problem of DNS cache poisoning was thrown into sharp relief by researcher Dan Kaminsky last year."

1 of 57 comments (clear)

  1. Re:Can someone explain ZSK and KSK? by Anonymous Coward · · Score: -1, Flamebait

    So, what, 20 seconds of processing with a five line perl or gawk script is too daunting?

    sort files (they already do this, so it can be done)
    read files line by line (the already do this, so it can be done) and direct output to a script.

    computer science 101, for chrissakes, this is baby shit.