University of Cambridge > > Computer Laboratory Security Seminar > Introduction to DNSSEC

Introduction to DNSSEC

Add to your list(s) Download to your calendar using vCal

If you have a question about this talk, please contact Markus Kuhn.

Abstract: This talk is a quick introduction to DNSSEC , the Domain Name System Security extensions. DNSSEC is interesting because it does more than just add tamper-proofing to the DNS : it is also a new public-key infrastructure.

The talk will describe the security features that DNSSEC adds (and does not add) to the DNS , and how the DNSSEC PKI can support other protocols such as SSL /TLS and SSH .

To be useful, DNSSEC needs to be widely deployed. The talks will demonstrate that switching on DNSSEC can be straight-forward, and will mention some of the traps and pitfalls that can catch the unwary.

Talk slides and materials are at

Bio: Tony Finch is a system administrator and developer in the University of Cambridge Information Services (until recently known as the Computing Service) where he helps to run the mail and DNS systems. He has contributed to a number of open source projects including Exim, BIND , SpamAssassin, FreeBSD, Apache httpd, and git. He participates in a number of IETF working groups related to mail and DNS , and has contributed draft documents to the DANE working group.

He is mildly notorious for his email address, and can be found online at

This talk is part of the Computer Laboratory Security Seminar series.

Tell a friend about this talk:

This talk is included in these lists:

Note that ex-directory lists are not shown.


© 2006-2024, University of Cambridge. Contact Us | Help and Documentation | Privacy and Publicity