DNSSEC

DNSSEC (the acronym for Domain Name System Security Extensions) is used to limit the risks of computer attacks such as cache poisoning.

 

What DNSSEC does

The security of any system depends on securing its various components and on securing the interactions between them. This is equally valid for the Domain Name System (DNS), a key link in the operation of the Internet, because almost every online service uses domain names at one time or another.

 

However, the DNS was developed in the 1980s, amid an environment in which its capacity to meet requirements in terms of performance and resilience had precedence over its security. Over time, and especially since 2008, when the “Kaminsky flaw” was disclosed, the need to improve the security of the DNS has become a priority for all those involved.

Afnic is committed to promoting DNSSEC

To encourage innovation under the French TLD .fr and strengthen the security of the Internet infrastructure in France, Afnic has undertaken a number of initiatives:

  • The provision of a practical guide to DNSSEC deployment; The implementation and deployment manual provides practical guidance for DNS hosts to configure DNSSEC on their infrastructure;
  • A series of DNSSEC training courses, in partnership with HSC for those involved in DNS hosting in France;
  • A financial incentive scheme, offering Afnic accredited registrars discounts* on the price of creations and maintenances for DNSSEC signed domain names under the .fr TLD.

 

By partnering with the various stakeholders involved in creating the trust chain, with this campaign Afnic intends to accelerate the deployment of DNSSEC in the .fr namespace and position itself as one of Europe's leading players in securing the DNS.

Find out more

Check out our two related issue papers:

 

*terms and conditions available on the registrar extranet. 20% Discount in 2015.

 

Lire cette ressource en français Top of the page