The Recent DNS Flaw and DNSSEC « Information and Technology Security

The Recent DNS Flaw and DNSSEC

July 9, 2008

InternetNews has posted a good article that ties the recent and well publicised DNS flaw together with DNSSEC, the IETF specification for finally putting some security around the domain name address book system (converting domain names to IP addresses).

Implementing more secure protocols (see: Jericho Forum Commandment 4 – PDF) will certainly help improve network security, in this case by reducing the opportunity to poison DNS servers and redirect legitimate domain name requests to malicious websites.

The article goes on to discuss VeriSign, the leader in Internet infrastructure as operator of the “.com” and “.net” Top Level Domains (TLDs) and Secure Socket Layer (SSL) certificates and why they may be dragging their heels in helping to role out DNSEC more widely.

Read this story.

Posted by awrobinson
Filed in Vulnerability Management
Tags: DNS, DNS Flaw, DNSSEC, expoit, Information Security, vulnerability

Leave a Comment »

Leave a Reply