DNSSEC ADOPTION TAKING LONGER THAN EXPECTED IN KEY INDUSTRIES
Progress Report Issued by Secure64 Is Follow-Up to 2010 Forrester Research
Study of DNSSEC Adoption
DENVER – November 19, 2012
– A Secure64 Software Corporation progress report on DNSSEC adoption reveals the extent to which organizations in a number of industries are falling short of their own objectives for making Domain Name Server (DNS) infrastructure more secure. The progress report is a follow-up to a 2010 study by Forrester Research titled, “DNSSEC Ready for Prime Time,” which reported on organizations’ plans to implement Domain Name System Security Extensions (DNSSEC) security protocols in order to shore up vulnerabilities in DNS.
“Given the heightened concern over cyber security threats, including the recent secret directive from the White House, rejected cyber security legislation from the Senate, efforts by the FCC, and cyber attacks on banks and others, we thought it was worthwhile looking into progress on the least expensive but one of the most significant enhancements to cyber security—DNSSEC,” said Steve Goodbarn, CEO of Secure64. “One of the most interesting aspects of the Forrester study was a survey of organizations that asked about their progress on DNSSEC adoption. Of the organizations that were familiar with DNSSEC, 95 percent told Forrester that they had already deployed DNSSEC or had plans to deploy it within 18 months. Secure64’s followup research shows that those plans have not yet come to fruition.”
DNSSEC lets internet users know for sure that their web and email communications reach the server that they intended, and are not hijacked by an attacker. DNSSEC is needed to make SSL and VPN truly trustworthy. The Forrester study examined DNSSEC adoption in a number of key industries whose business activities depend on DNS security, including financial services, media and entertainment, government agencies, internet service providers and online commerce.
Secure64’s progress report tracks DNSSEC adoption in several of these key industries, by looking for evidence of either a trial deployment or full deployment of DNSSEC.
Media and Entertainment
98 percent of 50 the world’s leading media and entertainment organizations show no evidence of either trial deployments or full deployments of DNSSEC.
Only one organization (Comcast) has fully deployed DNSSEC.
Telecommunications and Internet Service Providers
• The telecommunication and internet service provider sector has also been slower to adopt DNSSEC than they indicated in the Forrester study.
• Secure64’s analysis determined that none of the 60+ largest telecom/ISP companies in the world show evidence of either a trial or full deployment of DNSSEC.
• As reported in statistics published by Secure64 in August, progress has been equally slow in the financial services sector. None of the world’s leading banking/finance companies had fully deployed DNSSEC as of August.
• Only one banking organization showed evidence of a trial deployment of DNSSEC.
“It’s important for management and boards of directors in each of these industries to understand that there is no technological barrier to implementing DNSSEC. There are proven technologies that make it simple to quickly accomplish critical steps in the DNSSEC process, including secure key management. Forrester’s ‘Prime Time’ report put a bright spotlight on this issue, but there’s no reason to further delay the process of making DNS infrastructure more secure,” said Dr. Bill Worley, CTO of Secure64. “Our DNS Signer automates virtually all of the activities involved in DNSSEC implementation, including key generation, key rollover, and zone signing and resigning processes. It’s fast, easy and inexpensive for organizations in these industries to take action on DNSSEC and bring their DNS security plans to fruition.”
About Secure64 Software Corporation
Secure64 is a software developer with the most secure DNS products available. Secure64’s patented technology provides mission-critical security and reliability, built-in protection from DDoS attacks, high throughput and low latency. It has been shown to be immune to compromise from rootkits and malware and resistant to denial of service and other network attacks. The company offers a suite of trusted and secure DNS software appliances for caching, signing, blacklisting, management, and authoritative use. They also host a testbed for detection of IP Route Hijacking. Secure64’s products are sold and serviced worldwide through Hewlett-Packard and their reseller network and directly by Secure64. For more information, visit http://www.secure64.com.