Dot-org domains can now be protected by DNSSEC

The technology will help protect against man-in-the middle attacks

On Wednesday, .org became the first generic top-level domain to offer its customers improved security using DNSSEC (Domain Name System Security Extensions).

DNS is a key building block of the Internet. The technology's most important task is translating IP (Internet Protocol) addresses to host names. When DNS was born in the early days of the Internet it was designed to scale up fast, and a trade-off was made between that and security, according to Alexa Raad, CEO at .org. The implementation of DNSSEC will help change that and protect users against man-in-the middle attacks, she said.

For users, this means they can be sure that the site they are visiting is actually run by, for example, their bank, and not a hacker, as long as they go to the correct URL.

For the rollout of DNSSEC to take off, registrars, to which domains turn when they want to implement the technology, will have to be on board. Today, 13 of .org's registrars can handle DNSSEC, according to its Web site. That Go Daddy, the worlds largest registrar, is one of them, will help create a domino effect and get more registrants to implement DNSSEC, according to Raad.

For the proponents of DNSSEC it's been a long road. The technology has been under development for almost two decades, but now it is starting to pick up. Last week, the cryptographic key that will be used to secure the Internet's root zone was created.

The fact that a large generic top-level domain now has moved from testing to actually using DNSSEC is a stamp of approval, which signals that the technology is now ready, according to Jakob Schlyter, IT security advisor at Swedish consultant Kirei. When Verisign starts offering DNSSEC on .net towards the end of the year and then soon after that on .com other domains will follow, he said.

Join the CSO newsletter!

Error: Please check your email address.

Tags ICANNsecurityDNSdomain namesDNSSEC

More about SECVeriSign Australia

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Mikael Ricknäs

Latest Videos

  • 150x50

    CSO Webinar: Will your data protection strategy be enough when disaster strikes?

    Speakers: - Paul O’Connor, Engagement leader - Performance Audit Group, Victorian Auditor-General’s Office (VAGO) - Nigel Phair, Managing Director, Centre for Internet Safety - Joshua Stenhouse, Technical Evangelist, Zerto - Anthony Caruana, CSO MC & Moderator

    Play Video

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

More videos

Blog Posts

Market Place