Deploying and Monitoring DNS Security (DNSSEC)

Authors:
Eric Osterweil;Dan Massey;Lixia Zhang
Affiliations:
-;-;-
Venue:
ACSAC '09 Proceedings of the 2009 Annual Computer Security Applications Conference
Year:
2009

Citing 0
Cited 3

Quantifying DNS namespace influence

Computer Networks: The International Journal of Computer and Telecommunications Networking
Measuring occurrence of DNSSEC validation

PAM'13 Proceedings of the 14th international conference on Passive and Active Measurement
Measuring the practical impact of DNSSEC deployment

SEC'13 Proceedings of the 22nd USENIX conference on Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

SecSpider is a DNSSEC monitoring system that helps identify operational errors in the DNSSEC deployment and discover unforeseen obstacles. It collects, verifies, and publishes the DNSSEC keys for DNSSEC-enabled zones, which enables operators of both authoritative zones and recursive resolvers to deploy DNSSEC immediately, and benefit from its cryptographic protections. In this paper we present the design and implementation of SecSpider as well as several general lessons that stem from its design and implementation.