DNSSEC

DNSSEC is the system that allows for cryptographically secure DNS. It’s all based on a root cryptographic key, maintained by the Internet Assigned Numbers Authority (IANA). Ever wondered where the root Key Signing Key is stored, and how it’s accessed? Four times a year, a ceremony is held where the root key is pulled out of a physical safe, and maintenance tasks are performed in front of a group of witnesses.

Such an event was scheduled for February 12th, but a teensy problem was discovered. One of the safes that holds the key media had a broken lock, and the root key signing key was inaccessible for a few days while repairs were effected. The open nature of IANA means that much of their operations are publicly reported, and you can even watch the key signing ceremony, which was finally held on February 16th.

Continue reading “This Week In Security: DNSSEC Temporarily Lost Their Keys, FIDO, And One Weird Windows Trick” →

Hackaday

1 Articles

This Week In Security: DNSSEC Temporarily Lost Their Keys, FIDO, And One Weird Windows Trick

Search

Never miss a hack

If you missed it

Ask Hackaday: Is Shortwave On Life Support?

End Of An Era: Sony Cuts Production Of Writable Optical Media

The Rise Of The Disappearing Polymorphs

You Can Use LEDs As Sensors, Too

Reviewing Nuclear Accidents: Separating Fact From Fiction

Our Columns

Hacker Olympics

Hackaday Podcast Episode 281: Metal Clay, Desiccants, Silica Gel, And Keeping Filament Dry

This Week In Security: EvilVideo, Crowdstrike, And InSecure Boot

Linux Fu: Failing Pipelines

FLOSS Weekly Episode 793: Keeping An Eye On Things With Hilight.io

Search

Never miss a hack

Subscribe

If you missed it

Our Columns