 |
DNS Research |
|
|
Research
into the Domain Name System (DNS) is of critical importance to VeriSign
and we have been a longtime participant in the DNS protocol standardization
work fostered by the Internet Engineering Task Force (IETF).
Through
our research efforts in the area of DNS Security (DNSSEC), we are helping
the community define and develop ways to secure the most critical Internet
infrastructure – the Domain Name System. Our pilots and tools help generate
operational and implementation experience and drive adoption.
Along with other pilots and specification work, we
have created a set of alternative, Java-based DNSSEC command line tools.
These tools explore alternate implementations of standard DNSSEC tools
(zone signing, key generation), and provide a basis for implementing
proposed or experimental DNSSEC features (e.g., NSEC3).
About DNSSEC and VeriSign
DNSSEC
is a set of extensions to the DNS protocol that provide security based
on public key cryptography. The basic protocol work on DNSSEC is complete,
but work continues on further extensions and operational guidelines.
We have participated in DNSSEC’s development since its beginnings over
ten years ago and one of our Innovators was an editor of the most recent
protocol specification published by the IETF.
|
