AU, March 2, 20061 DNSSEC, APNIC, & how EPP might play a Role Ed Lewis DNS SIG APNIC 21.

Slides:

Advertisements

Similar presentations

IANA Update LACNIC XV, Canún May Agenda 2 DNSSEC RZM automation NOI Business Excellence.

Advertisements

Olaf M. Kolkman. APNIC, 6 February 2014, Bangkok. DNSSEC and in-addr an update Olaf M. Kolkman

Reverse DNS SIG Summary Report APNIC Annual Member Meeting Bangkok, March

Early Registration Transfer (ERX) Update George Michaelson DNS SIG APNIC17/APRICOT 2004 Feb KL, Malaysia.

Introduction to ARIN and the Internet Registry System.

State of DNS Security Extensions Edward Lewis February 26, 2001 APRICOT 2001 Panel.

Improving DNS contents in the RRR world Ólafur Guðmundsson Steve Crocker Oct.

APNIC Member Services George Kuo. MyAPNIC 2 What is MyAPNIC A secure Member services website Internet resources management, for example: –Whois updates.

Deploying DNSSEC in Windows Server 2012 David Cates Platform Services Group Microsoft Corporation.

An Introduction to Routing Security (and RPKI Tools) Geoff Huston May 2013.

Sweeping lame DNS reverse delegations APNIC16 – DNS Operations SIG Seoul, Korea, 20 August 2003.

IPv6: The Future of the Internet? July 27th, 1999 Auug.

IANA Status Update ARIN XXVI meeting, Atlanta Barbara Roseman October 2010.

Survey of DNSSEC Lutz Donnerhacke DNSSEC Meeting ( )

Services Area Report Sanjaya Services Area Director.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.

IANA Activities Update Jean-Jacques Sahel | RIPE 70 Amsterdam| 15 May 2015.

Introduction to ICANN’s new gTLD program. A practical example: the Dot Deloitte case. Jan Corstens, Partner, Deloitte WIPO Moscow, 9 Dec 2011.

© N. Ganesan, Ph.D., All rights reserved. Active Directory Nanda Ganesan, Ph.D.

Domain Name Services Oakton Community College CIS 238.

Hands-On Microsoft Windows Server 2008 Chapter 8 Managing Windows Server 2008 Network Services.

Event Viewer Was of getting to event viewer Go to –Start –Control Panel, –Administrative Tools –Event Viewer Go to –Start.

Domain Name System | DNSSEC. 2  Internet Protocol address uniquely identifies laptops or phones or other devices  The Domain Name System matches IP.

Introduction to ARIN and the Internet Registry System.

IANA Activities Update RIPE 68 Warsaw, Poland May 2014.

Overview of Active Directory Domain Services Lesson 1.

Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

DNS Registries. Overview What is a DNS registry? –DNS registries –Data In –Data Out –Transactions Registry Structure –Registry –Registrars –Registrants.

Name Resolution Domain Name System.

IIT Indore © Neminath Hubballi

1 APNIC reverse DNS management roadmap DNS operations SIG, APNIC 21 2 March 2006.

Prepared by The Regional Internet Registries [APNIC, ARIN, LACNIC and RIPE NCC]

Security for the Internet’s Domain Name System DNSSEC Current State of Deployment Prepared for Internet2 BoF Amy Friedlander, Shinkuro, Inc. Based on a.

Global Registry Services com/net/org Registry Update for NANOG24 Matt Larson VeriSign Global Registry Services.

1 San Diego, California 25 February Securing Routing: RPKI Overview Mark Kosters Chief Technology Officer.

APNIC Update RIPE 59 October Overview APNIC Services Update APNIC 28 policy outcomes APNIC Members and Stakeholder Survey Next APNIC Meetings.

IANA Activities Update Naela Sarras | ARIN 35 San Francisco | 14 April 2015.

1 Mirjam KühneINET MEA, Cairo, May 2004 Welcome to INET MEA Cairo, Egypt 8 May 2005 Mirjam Kühne, ISOC.

RFP for the.aero registry operator DAC 7 April 19, 2005 Geneva.

DNS Security Pacific IT Pros Nov. 5, Topics DoS Attacks on DNS Servers DoS Attacks by DNS Servers Poisoning DNS Records Monitoring DNS Traffic Leakage.

© Afilias Limitedwww.afilias.info SM Deploying DNSSEC Ram Mohan.

Internet Corporation for Assigned Names & Numbers Update on ITAR Elise Gerich Vice President, IANA.

Mar 3, 2006APNIC 21 Meeting -- Perth, AU1 IANA Status Report David Conrad, ICANN IANA General Manager.

U.S. General Services Administration Office of Governmentwide Policy GSA EXPO May 4, 2010 Lee Ellis U.S. General Services Administration Office of Governmentwide.

 Identify Active Directory functions and Benefits.  Identify the major components that make up an Active Directory structure.  Identify how DNS relates.

1 Madison, Wisconsin 9 September14. 2 Security Overlays on Core Internet Protocols – DNSSEC and RPKI Mark Kosters ARIN Engineering.

1 Discussion of the new DNS generation system DNS Operations SIG APNIC 18 2nd September 2004, Fiji.

Security in DNS(DNSSEC) Yalda Edalat Pramodh Pallapothu.

Delivering Value Sanjaya, Services and Operations Director.

Publishing zone scan data using an open data portal Sebastian Castro OARC Workshop Montreal – Oct 2015.

RDAP Andy Newton, Chief Engineer. Background WHOIS (Port 43) – Old, very old – Lot’s of problems Under specified, no I18N, insecure, no authentication,

Early Registration Record Transfers Richard Jimmerson Director of Operations APNIC 11Kuala Lumpur.

News from APNIC German Valdez Communications Area Manager RIPE October 2008.

1 The Internet Registry System Mirjam Kühne RIPE NCC EC-POP Brussels 5 July 1999.

APNIC DNSSEC deployment considerations APNIC 23, Bali George Michaelson R&D Officer APNIC.

APNIC Update Elly Tawhai Senior Internet Resource Analyst/Liaison Officer, Pacific, APNIC AusNOG

1 IPv6 Allocation and Policy Update Global IPv6 Summit in China 2007 April 12, 2007 Guangliang Pan.

This courseware is copyrighted © 2016 gtslearning. No part of this courseware or any training material supplied by gtslearning International Limited to.

Overview of Active Directory Domain Services Lesson 1.

Whois & Data Accuracy Across the RIRs. Terms ISP – An Internet Service Provider is allocated address space by an RIR for the purpose of providing connectivity.

Using Digital Signature with DNS. DNS structure Virtually every application uses the Domain Name System (DNS). DNS database maps: –Name to IP address.

Security Issues with Domain Name Systems

Domain Name Registration, ICANN, Registrars & Hosting Options

Principles of Computer Security

Overview of Active Directory Domain Services

CZ.NIC in a nutshell Domain, DNSSEC, Turris Project and others

A Study of DNS Lameness by Ed Lewis ARIN Research Engineer

RIPE Whois Database Software Recent Changes

ICANN/IANA Update at APNIC 29

A Proposal for IPv4 Essential Infrastructure

Presentation transcript:

AU, March 2, DNSSEC, APNIC, & how EPP might play a Role Ed Lewis DNS SIG APNIC 21

AU, March 2, Agenda Reverse Map Interfaces EPP and Number Registries DNSSEC and Number Registries EPP extensions for DNSSEC Passing DNSSEC Data Quick Demo

AU, March 2, Reverse Map environment DNS Operator RIR IP space holder Internet User NIR IANA LIR (sub)LIR OR Where DNSSEC data might flow (administratively)

AU, March 2, EPP and Number Registries EPP (RFC 3730+) written for ICANN- style registrars and registries –"Business to business" Potentially helpful to RIRs –Marginal benefit, not worth the change DNSSEC interface might suggest a look –Maybe, maybe justifies use by the RIRs

AU, March 2, DNSSEC Adds secure records to DNS –RFC –Parent will have to publish DS records RIPE NCC has signed their zones –Open for RIPE IP range holders DNSSEC DS RRset is posted to RIPE –Via a "ds-rdata" attribute

AU, March 2, EPP-DNSSEC RFC 4310 Adds a means to transfer DNSSEC administrative data via the provisioning interface for domains –DS or DNSKEY –Request max signature time An extension to EPP's base definition

AU, March 2, Passing DNSSEC Data Increased frequency –Not a "one time set up", a recurring relationship Increased bulk –DS records have quite a few "random" characters, hard to type correctly

AU, March 2, Quick Demo This was used to update the RFC prior to publication "Shows" more than "does", but shows it works

AU, March 2, Window Layout Registrant DNS "work directory" EPP Client EPP Server DNS Update Client TLD Server Running EPP Log File Dynamic Update Cut&Paste