The DNSSEC initiative to embed security at the heart of the Internet by preventing URL spoofing and other attacks has passed an important milestone.
The secure domain name server (DNS) protocol DNSSEC guarantees the authenticity of the mechanism that converts human-friendly Internet addresses to the Internet Protocol numeric address system. DNSSEC--short for Domain Name System Security Extensions--uses digital signatures to assure name servers that the DNS data they receive has not been intercepted or tampered with.
The organization responsible for managing the assignment of IP addresses and domain names, ICANN, published on Thursday the root zone trust anchor. This allows the operators of Internet root servers to begin to issue certificates to verify who they are to other root operators. The publication marks the completion of the signing of the root zone, meaning that all root operators are now involved in the exchange of valid certificates.
Read more of DNSSEC protocol kicks off in internet root zone" at ZDNet UK.