Monday, September 22, 2008

Feds doing the right thing on DNS security

When you file your taxes online, you want to be sure that the Web site you visit — www.irs.gov — is operated by the Internal Revenue Service and not a scam artist.
Well, yeah.

I've blogged a lot about the DNS vulnerability from Hell, because, well, it's a scammer's dream come true. Imagine being able to have your own site where people go, thinking they're paying their taxes online.

Well, the Fed.gov is doing The Right Thing - they're implementing a secure version of DNS called DNSSEC throughout the entire .gov domain.

This is a lot of work that I'm sure lots of people would rather not be doing, and it is a big step in the right direction. A lot of us like to laugh at the feds, but this is a great example of them leading from the front.

Well done.

No comments: