Principles of the Domain Name System Security Extensions (DNSSEC)
Domain Name System Security Extensions (DNSSEC) adds origin authentication and integrity protection to the protocol by signing DNS data. However the ratio of signed domain names remains low, mostly because, as any security feature, DNSSEC brings some risks when implemented without a proper understanding.
This course targets IT students, professionals or enthusiasts currently managing domain names and willing to start signing their DNS zones, improve or gain confidence in their signing procedures with hands-on experience and best-practices.
Content
• Review of the DNS technical infrastructure, with a focus on security threats and that can be mitigated with DNSSEC
• Theoretical background on DNSSEC
• Actual implementation of DNSSEC-signing (manually then automatically)
• DNSSEC-signing validation and monitoring
Learning Outcomes
By the end of this course, participants will have a sufficient understanding of the DNSSEC principles and functioning so as to be able to sign and publish their signed zone and avoid or troubleshoot DNSSEC issues.
Training Method
Lecture and practical hands on trainig.
Organised By
Digital Learning Hub Luxembourg
Prerequisites
there are no prerequisites
Your trainer(s) for this course
Guillaume-jean HERBIET
Holding an engineering degree (CentraleSupélec, France), a Master of Science (Georgia Tech, USA) and a PhD in Computer Science from the University of Luxembourg, he is Technical Manager at Fondation Restena, in charge of the .LU top-level domain name.