Using DNSSEC for Baseline Internet security

DNS Security Extensions allow the use of digital signatures to ensure that responses to DNS queries have not been spoofed or otherwise tampered with.

By Enterprise Networking Planet Staff | Posted Jun 7, 2010
Print ArticleEmail Article
  • Share on Facebook
  • Share on Twitter
  • Share on LinkedIn

DNSSEC allows the use of digital signatures to ensure that responses to DNS queries have not been spoofed or otherwise tampered with. This GCN report overviews the the DNS Security Extensions and explains how DNSSEC can provide a baseline of Internet security.


"The Domain Name System connects written domains used by people with the numerical IP addresses used by computers to direct Internet traffic. DNSSEC was designed to protect the system from attacks such as cache poisoning by adding a set of extensions to the DNS protocol — the DNS Security Extensions — that allow the use of digital signatures to ensure that responses to DNS queries have not been spoofed or otherwise tampered with.

"DNSSEC authenticates the origin of the response and integrity of the data and can verify if a requested address does not exist. It does not encrypt or protect the response."

Read the Full Story at GCN

Comment and Contribute
(Maximum characters: 1200). You have
characters left.
Get the Latest Scoop with Enterprise Networking Planet Newsletter