Packetizer Enables DNSSEC

People are well aware of the fact that there are many security vulnerabilities on the Internet. Perhaps one of the biggest that has largely gone unaddressed is security for the Domain Name System (DNS) that is used on the Internet to, among other things, map names to IP addresses and to identify mail servers. Virtually every domain on the Internet today is insecure in this respect. An attacker in a position to respond to DNS queries and provide bogus replies can intercept confidential corporate email messages, direct people to phishing sites, etc.

The DNS Security Extensions (DNSSEC) were defined to address this serious vulnerability on the Internet. The extensions are documented in RFC 4033, RFC 4034, and RFC 4035. They have been around for years now, but only recently has the Internet community taken forward steps to enable DNSSEC.

A number of registrars now support DNSSEC, including Packetizer’s registrar. So, we decided to enable DNSSEC. At the moment, there are really very few domains that are protected with DNSSEC, but the number of sites is expected to increase significantly in the next year or two.

Interested in setting up DNSSEC on your own site? Here’s a brief “how to”.