- OpenDNSSEC
-
OpenDNSSEC Stable release 1.1.1 / July 8, 2010 Written in C, C++, Python Operating system Linux, FreeBSD, NetBSD, Mac OS X, Solaris Type DNSSEC License BSD Website www.opendnssec.org SoftHSM Stable release 1.1.4 / April 6, 2010 Written in C++ Operating system Linux, FreeBSD, NetBSD, Mac OS X Type Hardware security module (HSM) License BSD Website www.opendnssec.org The OpenDNSSEC is software that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.
OpenDNSSEC was created as an open-source turn-key solution for DNSSEC. It secures zone data just before it is published in an authoritative name server. OpenDNSSEC takes in unsigned zones, adds the signatures and other records for DNSSEC and passes it on to the authoritative name servers for that zone. All keys are stored in a Security Module and accessed via PKCS#11, a standard API (software interface) for communicating with devices which hold cryptographic information and perform cryptographic functions. DNS is complicated, and so is digital signing; their combination in DNSSEC is even more so. The idea of OpenDNSSEC is to handle such difficulties, to relieve the administrator of them after a one-time effort for setting it up.
It is used on the .SE, .DK, .NL and .UK top-level domains.
External links
- http://www.opendnssec.org/
- http://trac.opendnssec.org/wiki/SoftHSM
- OpenDNSSEC at Freecode
- SoftHSM at Freecode
Categories:- Domain name system
- DNS software
- Computing stubs
Wikimedia Foundation. 2010.
