PREVIOUS EVENT: Mitigating DDoS Attacks: An Evolving Threat
On December 5th, PIR hosted a critical 3-hour discussion on the future of cyber security with a focus on DDoS attacks. Distributed Denial of Service attacks are an all-too-common reality in today’s Internet landscape and are an escalating global problem. The goal is to foster a discussion and provide a platform for developing a framework of best practices.
.ORG, The Public Interest Registry is dedicated to an online experience for the .ORG community, and the entire Internet, with less phishing, spamming and malware.
In our effort to bolster Internet security and stability, we have implemented Domain Name System Security Extensions (DNSSEC) within the .ORG Top Level Domain. DNSSEC is designed to protect Internet servers from domain name system attacks, such as DNS cache poisoning by malicious users. It is a set of DNS extensions which provide 3 basic functions:
- Data Origin Authentication - assures that data is received from the authorized DNS server; can protect from impersonation attacks
- Data Integrity - assures that data received matches data on the origin DNS server, and is not modified during transit; protects from man-in-the-middle type pollution attacks.
- Authenticated Denial of Existence - assures that a "Non-existent" response is valid.
In June 2010, PIR launched the production of DNSSEC, stemming from a two year effort starting with the PIR proposal to implement DNSSEC within the .ORG zone. As the first open generic Top Level Domain to implement DNSSEC, .ORG launched a cross industry coalition to execute an industry wide education and adoption plan within the Internet infrastructure community.
Believing this issue to be critical in the overall security and longevity of the Internet, .ORG plays a strategic role in efforts to understand and mitigate these implementation challenges, including active participation in ongoing DNSSEC design and deployment initiatives.
Sign up here to get more information on our DNSSEC efforts and implementation.
DNSSEC INDUSTRY COALITION
.ORG, The Public Interest Registry has initiated the DNSSEC Industry Coalition to encourage industry collaboration and streamline implementations for early widespread adoption of DNSSEC. Encouraging the adoption of needed upgrades to the DNS infrastructure in the interest of the greater good is a core part of the .ORG mission.
The DNSSEC Industry Coalition is a global group of registries and industry experts whose mission is to work collaboratively to facilitate adoption of Domain Name Security Extensions (DNSSEC) and streamline the implementations across Domain Name Registries. Members work together to establish a consistent set of tools and applications, shared best practices, specifications and shared nomenclature. DNSSEC Industry Coalition members include both generic Top-Level Domain and country code Top-Level Domain registries along with industry and educational experts of the Domain Name System.
More information on the DNSSEC Industry Coalition can be found at DNSSECCoalition.org.