Skip to Content

Say… When Are YOU Planning for DNSSEC Deployment?

Alexa Raad's picture
Alexa Raad - Mon, Mar 15th, 2010

Late last week, PIR publicly announced full DNSSEC deployment for .ORG.  Namely, we will begin accepting second level signed .ORG zones beginning in June of this year.  The 90-day notification was just sent out by our Technical Support Team to alert Registrars to the lead-time.  Our announcement garnered press attention because it was yet another sign that DNSSEC is inevitable.  “WHEN?” you ask.  The time to plan for DNSSEC is now.  It’s difficult to ignore that DNSSEC is nearing widespread adoption. Comcast announced last week that they would implement DNSSEC, for websites they manage, by Q1 2011. .ORG will enable second level signing in June 2010, the root will follow shortly after, and in early 2011 .COM and .NET will also be signed. 

Many thanks goes to DynDNS and NamesBeyond who were involved from the very beginning, and whose feedback and testing has been incredibly helpful in defining a better registrar handbook. This, of course, made it much easier for the others who followed suit.  Sincere thanks to the other registrars in OT&E as well.  I will not spoil their announcement, but suffice it to say their feedback and experience has moved all of us further along.  

“WHY” act now?  To start, how about competition?  In this highly competitive arena, having an advantage is critical to success.  The ability for registrars to offer an extra level of security to fend off identity theft, pharming, cache poisoning, and DNS redirection is effectively the ability to attract and retain a lucrative early adopter market.  Can you imagine a big name brand, financial service, or credit union transferring their name and all the added services of their site to a competitor because their registrar did not offer DNSSEC?  It may happen soon enough.

90 days is plenty of time to map out a plan, even if your rollout doesn’t coincide with ours. Having a plan is far better that being caught off guard.  Can we help?  Of course!  For more information regarding .ORG DNSSEC initiatives and information, click here, and if you are ready to start, contact us at info(at)pir(dot)org.