Local .au DNSSEC scoping complete: auDA

Local infrastructure will be built to support roll out

Australia has moved a step closer to secure DNS services with the Australian .au Domain Administration (auDA) completing the assessment phase of the planned transition, but a final go-live data is yet to be decided.

DNS Security Extensions, or DNSSEC, adds security to the Domain Name System and is designed to prevent cache poisoning and other attacks.

After announcing its intention to add DNSSEC support to .au domains last year, the auDA has been reluctant to put a completion date on the move, citing a complex mix of technical and policy decisions as potential hurdles.

However, the initial phase is now complete and a trial service is in the pipeline.

Spokesperson for the auDA, Paul Szyndler, said the scoping and assessment work for brining DNSSEC to .au has been completed in the form of an “extensive report into what to do and what could go wrong”.

“The preliminary analysis by the registry has been finalised and is at the first stage of consideration,” Szyndler said.

The auDA doesn’t have a timeframe for when DNSSEC support will be complete yet, but it now knows more of “this is what it could do for .au or to .au” when it is implemented.

This week’s opening of a new DNSSEC facility in Singapore is unrelated to the work the auDA is doing, which will result in its own infrastructure.

“At this point in time, we are not planning on using the newly opened PCH-ICANN facility,” Szyndler said. “The service is intended for countries without the resources to establish their own, independent facilities.”

The auDA registry operator, AusRegistry, made the analysis of “what everyone else has done” with DNSSEC globally so deciding what technology to implement is the next step.

“If everything was to go well, it might be nine months, but if there is more policy work to do we may need to get government involved so that could slow us down,” Szyndler said. “We are not dragging our feet, but it has to be done properly.”

The next stage will be a “test bed” where interested industry can participate.

Like most other security measures, the commercial imperative for business to adopt DNSSEC relates more to preventing from being hacked rather than an immediate return on investment, but Szyndler said auDA is already receiving a lot of interest from technical people, including those from academic institutions.

The auDA is engaging with local security experts like Bill Caelli on the DNSSEC roll out.

Follow Rodney Gedda on Twitter: @rodneygedda

Follow TechWorld Australia on Twitter: @Techworld_AU

Join the CSO newsletter!

Error: Please check your email address.

Tags auDAsecurityBill CaelliDNSAusRegistrydomain namesDNSSEC

More about auDABillDomain AdministrationICANNNNSEC

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Rodney Gedda

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts