XC01 Deploying DNSSEC (2 Days)
In this course the students will learn about DNSSEC.
DNSSEC is the Domain Name Systems SECurity system, recently
published as RFC4033, RFC4034, and RFC4035. (Previously as RFC2535).
The DNS Security extensions provide for data origin authentication,
and provides the highest assurance against name based attacks on the
Internet.
At the end of the course the students will have a deep understanding
of the threats to DNS, the present dangers of an insecure DNS, and
the types of assurances & security that DNSSEC provides.
The students will learn to install and configure common Unix-based
DNSSEC software, and how to setup a secure hierarchy. Students will
learn how to do key enrollment, and operational procedures for managing
and signing zones.
This is a hands on course.
Prerequisites:
- Familiarity installing Unix tools from C source (make/shell)
- TCP/IP networking
- DNS
