Meet the DNSSEC OMB Mandate & FISMA Requirements Quickly and Easily

OMB mandate M-08-23 and FISMA requires every U.S. federal government IT organization to deploy DNSSEC. While the scale and impact of DNSSEC deployment varies depending on your organization’s infrastructure, the complexity, cost, and risk associated with meeting this national security-driven mandate is on everyone’s mind.

If the success criteria for your organization’s deployment of DNSSEC includes 

• Minimizing DNSSEC deployment and ongoing administration costs 
• Eliminating the risk of catastrophic failure due to human error 
• Minimizing the impact on existing DNS infrastructure
• Completing the deployment in weeks rather than months
• Be IPv6 ready
• Deploying a FIPS 140-2 certified solution 
• Meeting the NIST SP 800-81 recommended guidelines for a secure DNS      

then Secure64® DNS Signer™ and Secure64 DNS Authority™ provide the winning solution to meet your goals.

FIPS 140-2 Inside

SIMPLE AND READY-TO-DEPLOY SECURE DNS SOLUTIONS 

Manual DNSSEC implementation is complex, time-consuming, and error-prone. Sometimes it requires programming and system integration skills that may not reside within your IT organization. Secure64 DNS Signer fully automates DNSSEC safely, correctly, and completely. Simply plug Signer right into your existing infrastructure, add a single statement to the configuration file, and your zones are signed.

Signer supports multiple deployment architectures. It is fully compatible with Secure64 DNS Authority, BIND, NSD, and Microsoft Windows DNS masters and slaves. No matter how big or how dynamic your DNS environment, Signer can handle the load. Additionally, Signer supports all of the RFCs, is FIPS 140-2 certified and best practices required to deploy DNSSEC. 

Secure64 DNS Authority provides easy compliance with NIST SP 800-81 and FISMA guidelines for a secure authoritative name server. Authority reduces the time required to secure the server by eliminating operating system hardening and emergency vulnerability patching while simplifying configuration. 

Authority also adds a high degree of availability and resiliency to the DNS. It responds to legitimate queries even while under a high-volume network attack. And like Secure64 DNS Signer, Authority easily integrates into your existing infrastructure. Authority can directly read existing BIND configuration files and is interoperable with name servers running BIND, NSD or Microsoft Windows DNS software. 

DON’T JUST TAKE OUR WORD FOR IT …. 

We’ve provided details to explain how we deliver this level of simplicity, security, compatibility, and availability for DNSSEC deployment and a secure authoritative name server. Find out more today and start planning your cost-effective and easily executed DNSSEC implementation project.

TM: A Certification Mark of NIST, which does not imply product endorsement by NIST, the U.S. or Canadian Governments