80% of .gov Web Sites Miss DNSSEC Deadline

netbuzz writes "Eighty percent of US federal agencies — including the Department of Homeland Security — have missed a deadline to deploy DNS Security Extensions, a new authentication mechanism designed to prevent hackers from hijacking Web traffic. The deadline that whooshed by was Dec. 31, 2009. Experts disagree as to whether this level of deployment represents a failure or reasonable progress toward meeting a mandate set by the Office of Management and Budget in the summer of 2008. OMB officials declined to say why the agency hasn't enforced the DNSSEC deadline for executive branch departments."

Re:Thank you, security guys

[Opportunist]

Should've been selfless. That's what you get when you get greedy for frist psot.

Re:of course - Show me the money

1) The deadline was never really the issue.
2-4) Where's the money coming from?

It's easy to stand on a soap box and accuse everyone else of either being lazy or stupid (or both) when your project is fully funded. When you have a budget of $0 and your DNS infrastructure isn't completely centered around BIND, exactly how can you implement DNSSEC?

No CIO in their right mind is going to allow you to rip out and replace a core network service without some definitive proof that the change is going to be flawless in it's implementation.

By you comments, you're working for one of the agencies that's already implemented it. Were you a part of the team that performed the changes? If so, post your domain and let the readers help to critique your work. If you did it right, there shouldn't be any shame in saying so.

Re:of course

[furbearntrout]

Does Bind have a point-n-click gui?

yes.
1990 called, it wants its troll back.