As of January 17, 2011, the “proyectoamparo.net” domain, one of the direct DNS zones maintained by LACNIC, is being signed with the DNSSEC protocol.

DNSSEC (Domain Name System Security) consists of a set of techniques and protocols defined by the IETF through RFCs 4033, 4034 and 4035 with the aim of providing security to a critical piece of Internet infrastructure – the Domain Name System or DNS.

DNSSEC introduces the use of cryptographic material in the domain name system architecture in a way such that clients can validate the responses to their DNS queries as well as the domain delegation chain.

This milestone marks the beginning of the production deployment of DNSSEC in the DNS zones operated by LACNIC. During 2011, it will extend to all direct zones and particularly all reverse zones operated by LACNIC, also making it possible for those LACNIC members who wish to do so to sign their own reverse zones and publish their secure delegation records.

Supported by the NET and ORG domain root signing processes, this deployment allows the region to continue improving the quality and security of its critical infrastructure.

References

1. RFC 4033 “DNS Security Introduction and Requirements” - http://www.ietf.org/rfc/rfc4033.txt
2. RFC 4034 “Resource Records for the DNS Security Extensions” - http://www.ietf.org/rfc/rfc4034.txt
3. RFC 4035 “Protocol Modifications for the DNS Security Extensions” – http://www.ietf.org/rfc/rfc4035.txt
4. Press release on the signing of the root zone - http://www.icann.org/en/announcements/announcement-4-16jun10-en.htm
5. Press release on the signing of the .NET zone - https://press.verisign.com/easyir/customrel.do?easyirid=AFC0FF0DB5C560D3&version=live&prid=697413&releasejsp=custom_97

 

 

 

 

 

 

 

Transparency Privacy Policy Job Opportunities LACNIC News Suggestions NRO News Casa de Internet Contact us FAQ