computerwoche.de

Archiv

Dot-Com Domains Still Lack DNSSEC Security

13.04.2011
It's been over two weeks since for .com domain names. This is an end stage for a process that will one day let surfers be 100 percent confident they're accessing the site they think they are, and have not been diverted by hackers.

In those two weeks, various network engineers have probably been working like crazy to add the necessary DNSSEC extensions to their domain names...right? After all, it's not as if DNSSEC has come out of nowhere. It's , with .

Care to guess how many of the .com domains within the Top 100 most popular Website list, as , are currently making use of DNSSEC for their .com domains?

None.

Actually, that's not quite true. The Mozilla.com domain doesn't use DNSSEC but , and that's what most of us visit. So, well done Mozilla! And boo shucks to virtually every other online business at the moment. (And an additional shout-out for network infrastructure company , which alerted me to the fact that DNSSEC take-up hasn't exactly been a gold rush, pointing out they were among the first 200 .coms to make the move.)

How about the top 10 U.S. banks, including Bank of America, JP Morgan Chase, Citigroup, Wachovia? After all, it's with online banking that DNSSEC is really needed.