Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

With such a big web security hole, why is DNSSEC not used everywhere already?

big dnssec hole security Used web
0
Posted

With such a big web security hole, why is DNSSEC not used everywhere already?

0 CommentsAdd a Comment

1 Answer

0

The reason for the delay in DNSSEC deployment has to do with education, speed, and cost. First, not enough people were convinced DNSSEC was even necessary. The problem of the giant security hole was only made understandable recently by Internet security researcher Dan Kaminsky, who publicized just how huge the problem to the Internet was. Second, the cryptography of signing DNS records requires more bandwidth, because DNSSEC records are quite large compared to other DNS records. For infrastructure providers, such as the top level registries and large ISPs, DNSSEC deployment is a huge undertaking. Finally, there’s also a “demand” problem with DNSSEC deployment. Many people are not aware of the DNS, let alone this specific problem.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123