OpenDNSSEC
   HOME

TheInfoList



Click Here for Items Related To - OpenDNSSEC
OR:
OpenDNSSEC on:   [Wikipedia]   [Google]   [Amazon]

OpenDNSSEC is a
computer program A computer program is a sequence or set of instructions in a programming language for a computer to Execution (computing), execute. Computer programs are one component of software, which also includes software documentation, documentation and oth ...
that manages the security of
domain name A domain name is a string that identifies a realm of administrative autonomy, authority or control within the Internet. Domain names are often used to identify services provided through the Internet, such as websites, email services and more. As ...
s on the Internet. The project intends to drive adoption of
Domain Name System Security Extensions The Domain Name System Security Extensions (DNSSEC) are a suite of extension specifications by the Internet Engineering Task Force (IETF) for securing data exchanged in the Domain Name System (DNS) in Internet Protocol (IP) networks. The protocol ...
(DNSSEC) to further enhance Internet security. OpenDNSSEC was created as an open-source turn-key solution for DNSSEC. It secures
DNS zone A DNS zone is a specific portion of the DNS namespace in the Domain Name System (DNS), which is managed by a specific organization or administrator. A DNS zone is an administrative space that allows for more granular control of the DNS componen ...
data just before it is published in an
authoritative name server A name server refers to the server component of the Domain Name System (DNS), one of the two principal namespaces of the Internet. The most important function of DNS servers is the translation (resolution) of human-memorable domain names (example. ...
. OpenDNSSEC takes in unsigned zones, adds
digital signature A digital signature is a mathematical scheme for verifying the authenticity of digital messages or documents. A valid digital signature, where the prerequisites are satisfied, gives a recipient very high confidence that the message was created b ...
s and other
records A record, recording or records may refer to: An item or collection of data Computing * Record (computer science), a data structure ** Record, or row (database), a set of fields in a database related to one entity ** Boot sector or boot record, r ...
for DNSSEC and passes it on to the authoritative name servers for that zone. All keys are stored in a
hardware security module A hardware security module (HSM) is a physical computing device that safeguards and manages secrets (most importantly digital keys), performs encryption and decryption functions for digital signatures, strong authentication and other cryptogr ...
and accessed via PKCS #11, a standard
software interface In computing, an interface is a shared boundary across which two or more separate components of a computer system exchange information. The exchange can be between software, computer hardware, peripheral devices, humans, and combinations of these ...
for communicating with devices which hold
cryptographic Cryptography, or cryptology (from grc, , translit=kryptós "hidden, secret"; and ''graphein'', "to write", or '' -logia'', "study", respectively), is the practice and study of techniques for secure communication in the presence of adv ...
information and perform cryptographic functions. OpenDNSSEC uses the Botan
cryptographic Cryptography, or cryptology (from grc, , translit=kryptós "hidden, secret"; and ''graphein'', "to write", or '' -logia'', "study", respectively), is the practice and study of techniques for secure communication in the presence of adv ...
library, and
SQLite SQLite (, ) is a database engine written in the C programming language. It is not a standalone app; rather, it is a library that software developers embed in their apps. As such, it belongs to the family of embedded databases. It is the mo ...
or
MySQL MySQL () is an open-source relational database management system (RDBMS). Its name is a combination of "My", the name of co-founder Michael Widenius's daughter My, and "SQL", the acronym for Structured Query Language. A relational database ...
as database back-end. It is used on the
.se .se, formerly branded as .SE, is the Internet country code top-level domain ( ccTLD) for Sweden Sweden, formally the Kingdom of Sweden,The United Nations Group of Experts on Geographical Names states that the country's formal name is ...
,
.dk .dk is the country code top-level domain (ccTLD) for Denmark. The supervision of the .dk top-level domain is handled exclusively by DK Hostmaster. Any new .dk domain name has to be applied for via an approved registrar. Then the domain name appl ...
,
.nl .nl is the Internet country code top-level domain (ccTLD) for the Netherlands. It is one of the most popular ccTLDs with over six million registered .nl domains . When cwi.nl was registered by Centrum Wiskunde & Informatica on 1986-05-01, .nl ...
 and
.uk .uk is the Internet country code top-level domain (ccTLD) for the United Kingdom. It was first registered in July 1985, seven months after the original generic top-level domains such as .com and the first country code after .us. , it is the fift ...
 top-level domains.


See also

*


References


External links

* * * Domain Name System DNS software Free network-related software {{compu-prog-stub