Nominum Makes DNSSEC Easy

REDWOOD CITY, Calif. -- Nominum, the leader in intelligent DNS solutions, today announced new capabilities that eliminate barriers to DNSSEC deployment. Nominum’s latest software release completely integrates functions needed to successfully deploy DNSSEC at any scale without costly proprietary appliances. In addition, automation of DNSSEC processes eliminates operational overhead and errors that could cause Internet sites to disappear. Coupled with unique layered defenses, Nominum now has the strongest possible protections for Internet users relying on both signed and unsigned DNS data. These new features are available in Nominum’s industry leading DNS servers (ANS, ANSP, and Vantio), or with SKYE™, its highly secure and reliable hosted service offering for service provider and enterprise customers worldwide.

“One of the grand challenges the Internet faces is: How do we make security scale? With over 61 percent of compromises being traced to authentication flaws, we clearly have a big problem. DNSSEC is the big solution that we need to fix authentication,” said Dan Kaminsky, the security researcher who identified a key flaw in DNS security in 2008. “And there is progress. I have been proud to see, in the wake of my DNS vulnerability finding, a steady drumbeat towards signatures at the Root and TLD layers. But large organizations need it to be easier and less disruptive to deploy DNSSEC before they can reasonably be expected to secure their own domain names. That is why I am happy to see Nominum adding comprehensive DNSSEC support to their DNS server platforms — and even happier to see DNSSEC almost entirely automated within it. DNSSEC can, should, and must “just work”, and Nominum has done an excellent job making that so.”

Nominum Inc.