ISC joined other key participants of the internet technical community in celebrating the achievement of a significant milestone for the Domain Name System today as the root zone was digitally signed for the first time. This marked the deployment of the DNS Security Extensions (DNSSEC) at the top level of the DNS hierarchy and ushers the way forward for further roll-out of DNSSEC in the top level domains and DNS Service Providers.
The DNS Security Extensions, DNSSEC, extends standard DNS to prove data came from an authoritative source and has not been modified, thwarting the so called ‘man-in-the-middle attack’ and enabling the development of more secure internet applications and transaction processing. DNSSEC adds new resource records and message header bits which can be used to verify that the received DNS data matches the original data, and has not been altered in transit.
via Internet Systems Consortium – ISC Praises Momentous Step Forward in Securing the Domain Name System. This is an important step towards the security of the internet. DNS is the basic address system of the internet and DNSSEC essentially allows for addresses to be validated and ensure that the website you are going to, is the correct web site.