OpenDNSSEC 2.0 out of beta
After a six-year wait, version 2.0 of the OpenDNSSEC security protocol has found its way out of beta.
On Wednesday, lead developer at NLnet Labs Berry van Halderen posted files to the first release candidate of the new version, noting that beta testing had revealed "no serious problems" and so there were few changes.
DNSSEC is used to digitally sign zones and make it much harder for people to spoof DNS traffic. Its use has jumped in recent years, not least because of the requirement to use it for all new internet registries. As such, a main driver behind version 2 is "performance improvements for large numbers of zones."
DNSSEC is, however, notoriously difficult and expensive to implement. OpenDNSSEC was created to make that process simpler, and its first version was released in 2010. The software handles the complex process of signing a zone automatically and includes secure key management, all of which means fewer manual operations. ®