In the summer of 2008, Dan Kaminsky revealed to the world, that the Internet’s DNS infrastructure was at risk.
After years of effort, VeriSign this week has signed the .com Top Level Domain for DNSSEC, enabling enhanced security for over 90 million registered domains.
“By reaching this critical milestone in DNSSEC deployment, Verisign and the Internet community have made enormous strides in protecting the integrity of DNS data,” said Pat Kane, senior vice president and general manager of Naming Services at Verisign in a statement. “But the threats against the Internet ecosystem — whether targeting the DNS or elsewhere — are unrelenting.”
Following Kaminsky’s disclosure, DNSSEC was identified as the best long-term solution to help protect DNS. DNSSEC helps to mitigate the risk by providing additional security for DNS information to ensure its authenticity with cryptographically signed signatures.
The DNSSEC implementation by VeriSign is part of the company’s larger Project Apollo initiative. Apollo was first announced in March of 2010 as a $300 million effort to update DNS.
