.ORG Applauds US Government on DNSSEC
.ORG applauds the US Government’s decision last week to require all users of the .GOV domain to implement DNSSEC, and even more importantly, to sign the .GOV root.
.ORG is the first generic Top Level Domain authorized by ICANN to implement DNSSEC, and we are hard at work putting together a comprehensive plan to roll it out.
We have said it before, and we'll say it again - DNSSEC is just part of the security program. Together with DNSSEC, signing the root is critical to addressing the problem discovered by Dan Kaminsky, "cache poisoning" or "man-in-the-middle" attacks. Attackers can impersonate legitimate websites so that the user has no way of knowing that he or she is being redirected.
We have urged ICANN and government officials to take whatever steps are needed to sign all the zones in the root, and we are pleased to see that the government understands the need for its very own domain.