DNSSECReport.com
Free DNS Reports, Key Monitoring, Software and Alerts
Home of Expert Advice in securing infrastructure that serves Domains
Download today's globally trusted keys here
On April 16, 2010, the daily report updated a validated set of trusted keys that will bridge the gap while the registrar DNSSEC interface discussions continue. Welcome UK TLD! We have started development of a separate repository of RSA SHA 256/512 DNSKEYs for our report. Since Bind9.6.1-P3 and earlier will not load the new RSASHA256 algorithm, we must deliver two trusted keysets.
As of March 12, DNSSECReport.com supports the testing of RSA2! Try Me.
DNSSECReport.com converts, validates, and publishes keys for Top Level Domains from iTAR and add verified anchors that enable DNSSEC in islands not participating in iTAR.
To dynamically read the iTAR and update the Bind trusted keys, click here.
For a Keyset format of the same keys, click here.
Insert the Bind keys in your named.conf file and allow your
recursive validator to validate your internet traffic.
Today's file(s) contain 67 TLD and 2nd level domain KSKs including 3 RSA-2 keysets.
Online DNSSEC primer courses available to architect, upgrade and manage DNS Validation
Free Monitoring of Keys, Zone signing, and Rollovers to be offered at DNSSECReport.com
DNSSECReport.com will be releasing an automated DNSSEC service that
will monitor, email notify, and assist domain managers with the complicated
task of keeping domains secure with DNSSEC.
Service is free, registration required to store email address for alerts.