DNSSEC is the smart, educated way to secure DNS right?
Ever since security researcher Dan Kaminsky big DNS security disclosure in 2008, the need for DNSSEC, which provides integrity security for DNS information has been obvious. Yet relatively few top level domains (TLDs) have actually signed their zones for DNSSEC.
The .edu (for education) TLD, operated by Educause is now set to join the ranks of DNSSEC secured TLDs by March of 2010. A testbed is set to be in place this month to begin the preliminary work.
Educause manages the .edu TLD under an agreement with the U.S Department of Commerce.
“The Internet plays a vital role in higher education by facilitating
online learning, collaboration, and research,” said Lawrence E.
Strickling, Assistant Secretary for Communications and Information at
the Department of Commerce in a statement. “We are pleased that DNSSEC will be
implemented in the .edu domain, which complements work already underway
to better secure the Domain Name System overall.”
This is clearly good news and further adds to the momentum that DNSSEC is now enjoying.
From my vantage point, I see 2010 as the year of DNSSEC with the beginning of wide adoption. I still think it will take a year (or more) until the whole Internet is secured (if ever) but there is light at the end of the tunnel.