ENISA investigating the use of Domain Name System Security Extensions
Posted on 16 September 2008.
The EU Agency ENISA is investigating the use of Domain Name System Security Extensions (DNSSEC) and other advanced technologies for improving the resilience of public communication networks. Recently a vulnerability of Domain Name System (DNS) caught a lot of media attention. A flaw in the DNS threatened to bring chaos to the Internet by poisoning the servers that translate domain names into Internet protocol addresses.

The European Network and Information Security Agency, ENISA, is stock taking the policies and regulations that exist across the EU Member States, the measures operators take and the technologies available to improve the resilience (availability and integrity) of public eCommunication Networks. This work is undertaken in close collaboration with regulators, policy makers, network operators, network equipment vendors and academia.

Three technologies, namely MPLS (Multiprotocol Label Switching), DNSSEC, IPv6, have been identified as promising to ensure this. To assess their effectiveness and identify potential problems or gaps that could compromise the availability of networks and services, the Agency is interviewing a number of network operators in the EU. The collected input will be analyzed, in direct consultation with all leading stakeholders, and lead to EU guidelines. The final results will be presented at an Agency workshop “Resilience of Public eCommunication Networks”, that will take place in Brussels, 12-13 November.


More than 900 embedded devices share hard-coded certs, SSH host keys

SEC Consult analyzed firmware images of more than 4000 embedded devices of over 70 vendors and found that, in some cases, there are nearly half a million devices on the web using the same certificate.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Thu, Nov 26th