US government urged to deploy DNS security measures, but through ICANN not VeriSign
Internet security gurus and leading vendors are urging the US federal government to rapidly deploy security and authentication mechanisms at the top level of the DNS hierarchy – the root zone. The comments are the result of a call for public comments regarding the deployment of DNSSEC by the NTIA that closed earlier this week.
Support for the deployment of DNSSEC across the root zone came from the majority of those making submissions including PayPal and Comcast. Many also preferred ICANN to undertake this deployment rather than VeriSign. APNIC, for example, said it supports “ICANN’s proposals to sign the root zone using the DNSSEC framework in a timely manner.” The IAB was of a similar view. Letters discouraging DNSSEC deployment came from the PublicRoot Consortium and AV8 Internet.
To read this report from Network World in full, see www.networkworld.com/news/2008/112508-dns-root.html or www.arnnet.com.au/article/268765/.