Abstract:Deploying DNSSEC. Pulling yourself up by your bootstraps

Joao Damas , Internet Systems Consortium

DNSSEC is ready for deployment from a standards and implementations point of view. However, there are very few signed TLD zones and, in particular, the root zone is not signed. In the absence of these, practical use of DNSSEC will not happen widely, unless there is some mechanism to avoid manual maintenance of multiple trust anchors This talk presents DLV, Domain Lookaside Validation, which is just such a mechanism.

About the Presenter
Joao joined in ISC in January 2003. He is Senior Programme Manager for F-root nameserver project and BIND Forum.
Prior to ISC he was CTO at RIPE NCC. Previously, Joao worked at the University of Madrid as the network engineer in charge of all network services for the University and briefly with the Spanish Academic network.
Joao is chairman of the routing-wg at RIPE and a member of the ICANN Root Server System Advisory Council. He regularly attends and speaks at RIPE, IETF, APNIC, LACNIC and is on several additional working groups within these organizations. He holds a MSc in Quantum Chemistry from the University in Madrid.

Link to this presentation

Deploying DNSSEC. Pulling yourself up by your bootstraps - Real VideoReal Video Presentation