Posts

Learning to Secure your DNS with the DNSSEC Workshop

 Within the framework of DNSSEC Task Force, ISOC Lebanon, in collaboration with the Internet Corporation for Assigned Names and Numbers (ICANN), Network Startup Resource Center (NSRC), Beirut IX and Berytech, has organized a DNS/DNSSEC workshop at Berytech Technology and Health on March 19-21.

The workshop was provided by Randy Bush, Richard Lamb and Phil Regnauld who are world authority experts in the DNS/DNSSEC field. In fact, Randy Bush is a Research Fellow and Network Operator at Internet Initiative Japan, Japan’s first commercial ISP; Richard Lamb is Senior Program Manager DNSSEC at ICANN; and Phil Regnauld is a Network engineer and Trainer for the Network Startup Resource Center (NSRC).

The Internet Society Lebanon Chapter is setting up a DNSSEC taskforce responsible for putting a strategy and implementing it across Lebanon to secure the domain name servers and infrastructure, and transition them to DNSSEC. DNSSEC is a key element of any broad-based cybersecurity strategy. In fact, hackers continue to exploit the security weakness of DNS to their advantage. By caching address information, name servers don’t have to look up the IP address every time a frequently visited site is accessed, and this speeds up the experience for end users. If hackers are able to insert a bogus IP address into a cache, however, all users of that name server will be directed to the wrong site (until the cache expires and is refreshed). Corrupting the operation of DNS in this way can lead to many kinds of fraud and other malicious activity. By plugging some of the largest security holes in the Internet, DNSSEC has the potential to significantly expand the trustworthiness—and thus the usefulness—of the Internet as a whole.

About 30 participants attended the workshop, thus learning about DNS operations, firewalls, security and many more. “The workshop was very interesting and useful to me as an IT Manager”, one attendant noted.