[LACNIC/Seguridad] Fwd: Root Signing announcement
Victor Ramiro
vramiro en niclabs.cl
Vie Jun 5 17:44:59 BRT 2009
Las políticas de generación de llaves y firmas, así como los ciclo de
vida de las mismas,
son definidas localmente par cada entidad que desee firmar sobre
registros en los que tiene autoridad.
nosotros acá en Niclabs chile hemos probado con varias combinaciones
(sobretodo en distintos tamaños de llaves) para poder definir los
ciclos de vida de nuestra operación con dnssec.
saludos,
Victor
On Jun 5, 2009, at 4:39 PM, Oscar Torres wrote:
> Buenas Tardes Aca en Panama igual que en Chile estamos en el
> estudios para la implementacion despues de varios Talleres con los
> colegas del NIC de Mexico
>
> La pregunta es tambien debemos firmar con verisign ?????
>
> Slds. a todos
>
> --
> Ing. Oscar Torres
> Tel. (507) 560-3230
> Fax. (507) 560-3148
> Cel. (507) 6586-0370
> Jefe de Redes y Comunicaciones
> Lead Team Network and Telecommunications Department
> Departamento de Redes y Comunicaciones
> Universidad Tecnológica de Panamá
> Dirección de Tecnologia de Información y Comunicaciones
> NIC-PANAMA - UTP (Network Information Center - Panamá)
> ccTLD.pa
>
>
>
> ------------------------------------------------------------------------------------------------------------------------------------
> Este mensaje (y sus adjuntos), en adelante "mensaje", ha sido
> enviado exclusivamente a su(s) destinatario(s) y es confidencial.
> Si usted recibe este mensaje por error, por favor borrelo y
> comunique inmediatamente al remitente.
> Toda utilizacion o publicacion, total o parcial, queda prohibida
> salvo autorizacion expresa. La UTP no podra ser considerada
> responsable si el mensaje ha sido modificado y/o utilizado sin
> autorizacion.
>
> -------------------------------------------------------------------------------------------------------------------------------------
> This message (and any attachments), are confidential intended solely
> for the people whose addresses appear. If you have received this
> message by error, please delete it and immediately notify the
> sender. Any use, dissemination or disclosure, either whole or
> partial, without formal approval is prohibited. The UTP will not
> therefore be liable for the message if modified and/or used without
> approval.
> --------------------------------------------------------------------------------------------------------------------------------------
>
> On Jun 5, 2009, at 2:29 PM, Lia Solis wrote:
>
>> Señores,
>>
>> Tomo la palabra.... estoy muy muy interesada en implementar DNSSEC
>> en ENTEL Bolivia... somos ISP de cobertura nacional.
>>
>>
>> Saludos cordiales
>> ---------------------------------
>> Lia M. Solis M.
>> Datos IP - ENTEL S.A.
>> Fon.(+591-2) 2141010 Ext 3135
>> E-mail: lsolis en entelnet.bo
>>
>> ----- Original Message ----- From: "Victor Ramiro" <vramiro en niclabs.cl
>> >
>> To: "Lista para discusión de seguridad en redes y sistemas
>> informaticos de la región" <seguridad en lacnic.net>
>> Sent: Friday, June 05, 2009 3:19 PM
>> Subject: Re: [LACNIC/Seguridad] Fwd: Root Signing announcement
>>
>>
>> Si, muy buenas noticias :-)
>> Aunque también nos esta poniendo presión en implementar en
>> Latinoamérica DNSSEC a nivel de ccTLDs y apoyar a los ISPs a que se
>> suban al carro.
>>
>> pregunta: aparte del caso de Brazil, que otro país esta trabajando en
>> implementar DNSSEC?
>>
>> Nosotros en Chile empezamos el estudio este año y nos encantaría
>> colaborar con más gente interesada.
>>
>> saludos,
>> Victor Ramiro
>> Niclabs Chile
>>
>>
>> On Jun 5, 2009, at 10:08 AM, Carlos M. Martinez wrote:
>>
>>> Esta es una muy buena noticia, junto con la de que .ORG ya esta
>>> firmado.
>>>
>>> Francisco Arias wrote:
>>>> ---------- Forwarded message ----------
>>>> From: Steve Crocker <steve en shinkuro.com>
>>>> Date: 2009/6/3
>>>> Subject: [dnssec-deployment] Root Signing announcement
>>>> To: DNSSEC deployment <dnssec-deployment en shinkuro.com>
>>>> Cc: Steve Crocker <steve en shinkuro.com>
>>>>
>>>>
>>>> Both ICANN and NIST are displaying a press release that the U.S.
>>>> Dept
>>>> of Commerce, ICANN and VeriSign have agreed to work together to get
>>>> the root signed by the end of the year.
>>>>
>>>> Here are the URLs for the ICANN and NIST press releases.
>>>>
>>>> http://www.icann.org/en/announcements/announcement-2-03jun09-en.htm
>>>>
>>>> http://www.nist.gov/public_affairs/releases/dnssec_060309.html
>>>>
>>>> The text of the NIST press release is copied below.
>>>>
>>>> Steve
>>>>
>>>>
>>>>
>>>> Commerce Department to Work with ICANN and VeriSign to Enhance the
>>>> Security and Stability of the Internet’s Domain Name and Addressing
>>>> System
>>>>
>>>> FOR IMMEDIATE RELEASE:
>>>> June 3, 2009
>>>>
>>>> WASHINGTON —The U.S. Department of Commerce's National
>>>> Telecommunications and Information Administration (NTIA) and
>>>> National
>>>> Institute of Standards and Technology (NIST) announced today that
>>>> the
>>>> two agencies are working with the Internet Corporation for Assigned
>>>> Names and Numbers (ICANN) and VeriSign on an initiative to
>>>> enhance the
>>>> security and stability of the Internet. The parties are working
>>>> on an
>>>> interim approach to deployment, by year’s end, of a security
>>>> technology—Domain Name System Security Extensions (DNSSEC)—at the
>>>> authoritative root zone (i.e., the address book) of the Internet.
>>>> There will be further consultations with the Internet technical
>>>> community as the testing and implementation plans are developed.
>>>>
>>>> The Domain Name and Addressing System (DNS) is a critical
>>>> component of
>>>> the Internet infrastructure. The DNS associates user-friendly
>>>> domain
>>>> names (e.g., www.commerce.gov) with the numeric network addresses
>>>> (e.g., 170.110.225.163) required to deliver information on the
>>>> Internet, making the Internet easier for the public to navigate.
>>>> The
>>>> accuracy, integrity, and availability of the data supplied by the
>>>> DNS
>>>> are essential to the operation of any system or service that uses
>>>> the
>>>> Internet. Over the years, vulnerabilities have been identified in
>>>> the
>>>> DNS protocol that threaten the authenticity and integrity of the
>>>> DNS
>>>> data. Many of these vulnerabilities are mitigated by DNSSEC,
>>>> which is
>>>> a suite of Internet Engineering Task Force (IETF) specifications
>>>> for
>>>> securing information provided by the DNS.
>>>>
>>>> “The Internet is an ever-increasing means of communications and
>>>> commerce, and this success is due in part to the Internet domain
>>>> name
>>>> and addressing system,” said Acting NTIA Administrator Anna M.
>>>> Gomez.
>>>> “The Administration is committed to preserving the stability and
>>>> security of the DNS, and today’s announcement supports this
>>>> commitment.”
>>>>
>>>> "NIST has been an active participant within the international
>>>> community in developing the DNSSEC protocols and has
>>>> collaborated with
>>>> various U.S. agencies in deploying DNSSEC within the .gov domain,"
>>>> said Cita M. Furlani, director of NIST's Information Technology
>>>> Laboratory. "Signing the root will significantly speed up the
>>>> global
>>>> deployment of DNSSEC and enhance the security of the Internet.”
>>>>
>>>> The NTIA in the U.S. Department of Commerce serves as the executive
>>>> branch agency principally responsible for advising the President on
>>>> communications and information policies. For more information about
>>>> the NTIA, visit www.ntia.doc.gov.
>>>>
>>>> As a non-regulatory agency, NIST promotes U.S. innovation and
>>>> industrial competitiveness by advancing measurement science,
>>>> standards
>>>> and technology in ways that enhance economic security and improve
>>>> our
>>>> quality of life. For more information visit, www.nist.gov.
>>>> _______________________________________________
>>>> Seguridad mailing list
>>>> Seguridad en lacnic.net
>>>> https://mail.lacnic.net/mailman/listinfo/seguridad
>>> _______________________________________________
>>> Seguridad mailing list
>>> Seguridad en lacnic.net
>>> https://mail.lacnic.net/mailman/listinfo/seguridad
>>
>> _______________________________________________
>> Seguridad mailing list
>> Seguridad en lacnic.net
>> https://mail.lacnic.net/mailman/listinfo/seguridad
>>
>> _______________________________________________
>> Seguridad mailing list
>> Seguridad en lacnic.net
>> https://mail.lacnic.net/mailman/listinfo/seguridad
>
> _______________________________________________
> Seguridad mailing list
> Seguridad en lacnic.net
> https://mail.lacnic.net/mailman/listinfo/seguridad
Más información sobre la lista de distribución Seguridad