• DocumentCode
    3100815
  • Title

    Deploying and Monitoring DNS Security (DNSSEC)

  • Author

    Osterweil, Eric ; Massey, Dan ; Zhang, Lixia

  • Author_Institution
    UCLA, Los Angeles, CA, USA
  • fYear
    2009
  • fDate
    7-11 Dec. 2009
  • Firstpage
    429
  • Lastpage
    438
  • Abstract
    SecSpider is a DNSSEC monitoring system that helps identify operational errors in the DNSSEC deployment and discover unforeseen obstacles. It collects, verifies, and publishes the DNSSEC keys for DNSSEC-enabled zones, which enables operators of both authoritative zones and recursive resolvers to deploy DNSSEC immediately, and benefit from its cryptographic protections. In this paper we present the design and implementation of SecSpider as well as several general lessons that stem from its design and implementation.
  • Keywords
    Internet; cryptography; DNS security monitoring; DNSSEC keys; SecSpider; authoritative zones; cryptographic protections; recursive resolvers; Application software; Computer errors; Computer security; Computerized monitoring; Cryptography; Data security; Domain Name System; Internet; Protection; US Government; DNS; DNSSEC; Internet; distributed; monitoring; security; zones;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Applications Conference, 2009. ACSAC '09. Annual
  • Conference_Location
    Honolulu, HI
  • ISSN
    1063-9527
  • Print_ISBN
    978-0-7695-3919-5
  • Type

    conf

  • DOI
    10.1109/ACSAC.2009.47
  • Filename
    5380700
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3100815