Problem solve Get help with specific problems with your technologies, process and projects.

DNSSEC deployments: The top 5 concerns and how to avoid them

A DNSSEC deployment is possibly the best mitigation for cache poisoning attacks. Learn how to avoid the top five concerns in DNSSEC deployments. Security SchoolThis podcast is part of's Integration of Networking and Security School lesson, Securing DNS infrastructure. For more information security learning resources, visits's Security School Course Catalog.

DNS Security Extensions, or DNSSEC, are largely considered the best mitigation for warding off cache poisoning attacks, the most common attack on the Domain Name System. These attacks are particularly dangerous because users are generally redirected to malicious websites despite requesting a legitimate IP address. DNSSEC deployments, however, are complicated and rife with potential hurdles.

In this podcast, expert Char Sample sheds light on the top five potential pitfalls in DNSSEC deployments and explains how to best prepare for and avoid them. She also relays information on the current state of DNSSEC deployments and gives her thoughts on the future of DNSSEC. Ensure the success of your DNSSEC deployment with this valuable podcast.

Play now:
Download for later:

DNSSEC deployments: The top 5 concerns and how to avoid them

  • Internet Explorer: Right Click > Save Target As
  • Firefox: Right Click > Save Link As








About the speaker:
Char Sample, CERT security solutions engineer, has close to 20 years of experience in Internet security, and she has been involved with integrating various security technologies in both the public and private sectors. She is presently a doctoral candidate at Capitol College, where her dissertation topic deals with the use of soft markers in attack attribution.

This was last published in May 2012

Dig Deeper on Information Security Incident Response-Information