OMB mandate M-08-23 requires every U.S. federal government IT organization to deploy DNSSEC. While the scale and impact of DNSSEC deployment varies depending on your organization’s infrastructure, the complexity, cost, and risk associated with meeting this national security-driven mandate is on everyone’s mind.
If the success criteria for your organization’s deployment of DNSSEC includes
then Secure64® DNS Signer™ and Secure64 DNS Authority™ provide the winning solution to meet your goals.
Manual DNSSEC implementation is complex, time-consuming, and error-prone. Sometimes it requires programming and system integration skills that may not reside within your IT organization. Secure64 DNS Signer fully automates DNSSEC safely, correctly, and completely. Simply plug Signer right into your existing infrastructure, add a single statement to the configuration file, and your zones are signed.
Signer supports multiple deployment architectures. It is fully compatible with Secure64 DNS Authority, BIND, NSD, and Microsoft Windows DNS masters and slaves. No matter how big or how dynamic your DNS environment, Signer can handle the load. Additionally, Signer supports all of the RFCs and best practices required to deploy DNSSEC.
Secure64 DNS Authority provides easy compliance with NIST SP 800-81 guidelines for a secure authoritative name server. Authority reduces the time required to secure the server by eliminating operating system hardening and emergency vulnerability patching while simplifying configuration.
Authority also adds a high degree of availability and resiliency to the DNS. It responds to legitimate queries even while under a high-volume network attack. And like Secure64 DNS Signer, Authority easily integrates into your existing infrastructure. Authority can directly read existing BIND configuration files and is interoperable with name servers running BIND, NSD or Microsoft Windows DNS software.
We’ve provided details to explain how we deliver this level of simplicity, security, compatibility, and availability for DNSSEC deployment and a secure authoritative name server. Find out more today and start planning your cost-effective and easily executed DNSSEC implementation project.