- Software License Control
- Public Key Infrastructure Security
- Digital Signature Solution
- Authentication Solution
- Infrastructure Security
- Professional Services & Training
- Contact US
Services & Solutions
DNSSEC
What is DNSSEC?
DNSSEC (short for DNS Security Extensions) adds security to the Domain Name System. DNSSEC was designed to protect Internet resolvers (clients) from forged DNS data, such as that created by DNS cache poisoning. All answers in DNSSEC are digitally signed. By checking the digital signature, a DNS resolver is able to check if the information is identical (correct and complete) to the information on the authoritative DNS server. While protecting IP addresses is the immediate concern for many users, DNSSEC can protect other information such as general-purpose cryptographic certificates stored in CERT records in the DNS. RFC 4398 describes how to distribute these certificates, including those for email, making it possible to use DNSSEC as a worldwide public key infrastructure for email.
How SecureMetric can help protect your organization and your country’s NIC
SecureMetric specialize in deploying AEP Networks’ FIPS 140-2 Level Hardward Security Module (HSM). In all DNSSEC implementation, the HSM is the most important component in whole system. If
The DNSSEC’s HSM is compromised, the whole DNSSEC implementation is deemed to be useless.
It cannot be stressed enough the importance of having a good and highly secure HSM in the whole DNSSEC implementation. Some of the functions of a HSM in the system are:- onboard secure key generation
- onboard secure key storage,
- use of cryptographic and sensitive data material,
- Offloading application servers for complete asymmetric and symmetric cryptography.
The fact that the top Internet domain organization, ICANN have chosen to use AEP Networks’ HSM shows that it considers the HSM component a very crucial part of the DNSSEC implementation. Since then, AEP Networks’ HSM has helped secure DNS for many other well know organizations such as MTV and iTunes.
With SecureMetric’s many years of implementing AEP Networks’ HSM, we are in the position to help your organization protect your DNS from hackers. The implementation of DNSSEC is important to every country code top level domain (ccTLD). It protects the country’s domain names from DNS poisoning.
SecureMetric is not only an expert in implementing AEP Networks’ HSM; we are also trained professional in the BIND implementation of DNSSEC. The combination of both these expertise has made us the preferred partner for your DNSSEC implementation.
For more information about SecureMetric DNS Security, please email to sales@securemetric or send in your enquiry here
