The march to secure the Internet's core DNS (define) infrastructure with DNSSEC (define) is moving forward. Since at least the summer of 2008, when security researcher Dan Kaminksy disclosed a critical vulnerability in DNS, the global Internet domain routing ecosystem has been moving to implement DNSSEC, which provides is a digitally signed mechanism to authenticate the integrity of DNS information, secure the system and prevent attacks.
Among the first generic Top Level Domains (gTLD) to first announce its plan to adopt DNSSEC was .Org back in September 2008. This week, .Org announced that its rollout of DNSSEC is now on track for deployment in June 2010. On a global basis, ICANN (Internet Corporation for Assigned Names and Numbers) reported that DNSSEC adoption in the root zone of the Internet is also going according to plan.

"We are extremely pleased to witness the gaining momentum in DNSSEC development and adoption, ".Org CEO Alexa Raad told InternetNews.com. "All actors within the chain of trust -- registrars, ISPs and application providers -- now have a known lead time for development, and zero uncertainty about the future of DNSSEC."

At the time of the original Kaminsky disclosure on DNS, some questioned whether DNSSEC was the appropriate remedy. That's no longer the case, as all of the major gTLDs, as well as multiple country code TLDs, domain registrars and ISPs are moving to implement the solution.

The link for this article located at Enterprise Networking Planet is no longer available.