1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

A first: ICANN will generate new DNSSec key

Discussion in 'CSO' started by RSS, Oct 3, 2016.

  1. RSS

    RSS New Member Member

    Rotating cryptographic keys is a security best practice, so it's good news that ICANN has begun the process to change the root key pair underpinning the security of the DNS. While the chances of a misstep is small, the fact remains that changing the root key pair has never been done before. A mistake can potentially -- temporarily -- break the Internet.

    No pressure, ICANN.

    [ Safeguard your data! The tools you need to encrypt your communications and web data. • Maximum-security essential tools for everyday encryption. • InfoWorld's encryption Deep Dive how-to report. | Discover how to secure your systems with InfoWorld's Security newsletter. ]

    As the phone book of the Internet, DNS translates easy-to-remember domain names into IP addresses so that users don't have to remember strings of numbers in order to access web applications and services. However, attackers can hijack legitimate DNS requests to divert users to fraudulent sites through DNS cache poisoning or DNS spoofing.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page