CINXE.COM

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" > <head profile="http://gmpg.org/xfn/11"> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>DNSSEC Deployment</title> <link rel="alternate" type="application/rss+xml" title="DNSSEC Deployment RSS Feed" href="https://www.dnssec-deployment.org/feed/" /> <link rel="alternate" type="application/atom+xml" title="DNSSEC Deployment Atom Feed" href="https://www.dnssec-deployment.org/feed/atom/" /> <link rel="pingback" href="http://www.dnssec-deployment.org/xmlrpc.php" /> <link rel="shortcut icon" href="http://www.dnssec-deployment.org/wp-content/themes/ddi-fusion-wp/favicon.ico" /> <style type="text/css" media="all"> @import "https://www.dnssec-deployment.org/wp-content/themes/ddi-fusion-wp/style.css"; #page-wrap2{ background: #003366; } #page-wrap1{ background: none; } #tabs{ letter-spacing: -0.04em; font-size: 13px; } #tabs a span span{ padding: 2px 0 0 0; } #page-wrap2, #header{ height: 190px; } body{ background-position: left 150px; } #sidebar-wrap1{ background: transparent url(images/side-start.png) no-repeat left top; padding-left: 28px; margin-top: 36px; height: 100%;} body, input, textarea, select, h3, h4, h5, h6, #sidebar h2.title, #sidebar2 h2.title{ font-family: Arial, Helvetica; } /* if sidebar exists... */ #page.with-sidebar #main-wrap #mid-wrap { right:10%; /* width of the 2nd column, 0 because it doesnt exist */ } #page.with-sidebar #main-wrap #side-wrap { right:66%; /* width of the main column */ } #page.with-sidebar #main-wrap #mid { width:80%; /* width of main column */ left:80%; /* same */ } #page.with-sidebar #main-wrap #sidebar { width:20%; /* width of the sidebar */ left:80%; } #sidebar-wrap2{ background: transparent url(images/side-bg.png) no-repeat right top; padding-right: 10px; padding-top: 100px; height: 100%; min-height: 400px; } /* logo position */ a#logo{ top: 40px; position: center; } .widget.widget_text ul li { background: transparent url(wp-content/themes/ddi-fusion-wp/images/b3.gif) no-repeat left 6px; } .widget.widget_text ul li a { display: inline-block; text-decoration: none solid rgb(139, 139, 137); color: rgb(139, 139, 137); margin-left: 10px; margin-right: 0px; } </style> <link rel="StyleSheet" type="text/css" href="http://badsign-a.testsub.dnssec-deployment.org/broken.css" />  <meta name='robots' content='max-image-preview:large' /> <style>img:is([sizes="auto" i], [sizes^="auto," i]) { contain-intrinsic-size: 3000px 1500px }</style>     <link rel='stylesheet' id='wgs2-css' href='http://www.dnssec-deployment.org/wp-content/plugins/wp-google-search/wgs2.css?ver=6.7.2' type='text/css' media='all' /> <link rel='stylesheet' id='wp-block-library-css' href='http://www.dnssec-deployment.org/wp-includes/css/dist/block-library/style.min.css?ver=6.7.2' type='text/css' media='all' /> <style id='classic-theme-styles-inline-css' type='text/css'> /*! This file is auto-generated */ .wp-block-button__link{color:#fff;background-color:#32373c;border-radius:9999px;box-shadow:none;text-decoration:none;padding:calc(.667em + 2px) calc(1.333em + 2px);font-size:1.125em}.wp-block-file__button{background:#32373c;color:#fff;text-decoration:none} </style> <style id='global-styles-inline-css' type='text/css'> :root{--wp--preset--aspect-ratio--square: 1;--wp--preset--aspect-ratio--4-3: 4/3;--wp--preset--aspect-ratio--3-4: 3/4;--wp--preset--aspect-ratio--3-2: 3/2;--wp--preset--aspect-ratio--2-3: 2/3;--wp--preset--aspect-ratio--16-9: 16/9;--wp--preset--aspect-ratio--9-16: 9/16;--wp--preset--color--black: #000000;--wp--preset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--preset--color--luminous-vivid-orange: #ff6900;--wp--preset--color--luminous-vivid-amber: #fcb900;--wp--preset--color--light-green-cyan: #7bdcb5;--wp--preset--color--vivid-green-cyan: #00d084;--wp--preset--color--pale-cyan-blue: #8ed1fc;--wp--preset--color--vivid-cyan-blue: #0693e3;--wp--preset--color--vivid-purple: #9b51e0;--wp--preset--gradient--vivid-cyan-blue-to-vivid-purple: linear-gradient(135deg,rgba(6,147,227,1) 0%,rgb(155,81,224) 100%);--wp--preset--gradient--light-green-cyan-to-vivid-green-cyan: linear-gradient(135deg,rgb(122,220,180) 0%,rgb(0,208,130) 100%);--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange: linear-gradient(135deg,rgba(252,185,0,1) 0%,rgba(255,105,0,1) 100%);--wp--preset--gradient--luminous-vivid-orange-to-vivid-red: linear-gradient(135deg,rgba(255,105,0,1) 0%,rgb(207,46,46) 100%);--wp--preset--gradient--very-light-gray-to-cyan-bluish-gray: linear-gradient(135deg,rgb(238,238,238) 0%,rgb(169,184,195) 100%);--wp--preset--gradient--cool-to-warm-spectrum: linear-gradient(135deg,rgb(74,234,220) 0%,rgb(151,120,209) 20%,rgb(207,42,186) 40%,rgb(238,44,130) 60%,rgb(251,105,98) 80%,rgb(254,248,76) 100%);--wp--preset--gradient--blush-light-purple: linear-gradient(135deg,rgb(255,206,236) 0%,rgb(152,150,240) 100%);--wp--preset--gradient--blush-bordeaux: linear-gradient(135deg,rgb(254,205,165) 0%,rgb(254,45,45) 50%,rgb(107,0,62) 100%);--wp--preset--gradient--luminous-dusk: linear-gradient(135deg,rgb(255,203,112) 0%,rgb(199,81,192) 50%,rgb(65,88,208) 100%);--wp--preset--gradient--pale-ocean: linear-gradient(135deg,rgb(255,245,203) 0%,rgb(182,227,212) 50%,rgb(51,167,181) 100%);--wp--preset--gradient--electric-grass: linear-gradient(135deg,rgb(202,248,128) 0%,rgb(113,206,126) 100%);--wp--preset--gradient--midnight: linear-gradient(135deg,rgb(2,3,129) 0%,rgb(40,116,252) 100%);--wp--preset--font-size--small: 13px;--wp--preset--font-size--medium: 20px;--wp--preset--font-size--large: 36px;--wp--preset--font-size--x-large: 42px;--wp--preset--spacing--20: 0.44rem;--wp--preset--spacing--30: 0.67rem;--wp--preset--spacing--40: 1rem;--wp--preset--spacing--50: 1.5rem;--wp--preset--spacing--60: 2.25rem;--wp--preset--spacing--70: 3.38rem;--wp--preset--spacing--80: 5.06rem;--wp--preset--shadow--natural: 6px 6px 9px rgba(0, 0, 0, 0.2);--wp--preset--shadow--deep: 12px 12px 50px rgba(0, 0, 0, 0.4);--wp--preset--shadow--sharp: 6px 6px 0px rgba(0, 0, 0, 0.2);--wp--preset--shadow--outlined: 6px 6px 0px -3px rgba(255, 255, 255, 1), 6px 6px rgba(0, 0, 0, 1);--wp--preset--shadow--crisp: 6px 6px 0px rgba(0, 0, 0, 1);}:where(.is-layout-flex){gap: 0.5em;}:where(.is-layout-grid){gap: 0.5em;}body .is-layout-flex{display: flex;}.is-layout-flex{flex-wrap: wrap;align-items: center;}.is-layout-flex > :is(*, div){margin: 0;}body .is-layout-grid{display: grid;}.is-layout-grid > :is(*, div){margin: 0;}:where(.wp-block-columns.is-layout-flex){gap: 2em;}:where(.wp-block-columns.is-layout-grid){gap: 2em;}:where(.wp-block-post-template.is-layout-flex){gap: 1.25em;}:where(.wp-block-post-template.is-layout-grid){gap: 1.25em;}.has-black-color{color: var(--wp--preset--color--black) !important;}.has-cyan-bluish-gray-color{color: var(--wp--preset--color--cyan-bluish-gray) !important;}.has-white-color{color: var(--wp--preset--color--white) !important;}.has-pale-pink-color{color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-color{color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-color{color: var(--wp--preset--color--luminous-vivid-orange) !important;}.has-luminous-vivid-amber-color{color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-color{color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-color{color: var(--wp--preset--color--vivid-green-cyan) !important;}.has-pale-cyan-blue-color{color: var(--wp--preset--color--pale-cyan-blue) !important;}.has-vivid-cyan-blue-color{color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-color{color: var(--wp--preset--color--vivid-purple) !important;}.has-black-background-color{background-color: var(--wp--preset--color--black) !important;}.has-cyan-bluish-gray-background-color{background-color: var(--wp--preset--color--cyan-bluish-gray) !important;}.has-white-background-color{background-color: var(--wp--preset--color--white) !important;}.has-pale-pink-background-color{background-color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-background-color{background-color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-background-color{background-color: var(--wp--preset--color--luminous-vivid-orange) !important;}.has-luminous-vivid-amber-background-color{background-color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-background-color{background-color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-background-color{background-color: var(--wp--preset--color--vivid-green-cyan) !important;}.has-pale-cyan-blue-background-color{background-color: var(--wp--preset--color--pale-cyan-blue) !important;}.has-vivid-cyan-blue-background-color{background-color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-background-color{background-color: var(--wp--preset--color--vivid-purple) !important;}.has-black-border-color{border-color: var(--wp--preset--color--black) !important;}.has-cyan-bluish-gray-border-color{border-color: var(--wp--preset--color--cyan-bluish-gray) !important;}.has-white-border-color{border-color: var(--wp--preset--color--white) !important;}.has-pale-pink-border-color{border-color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-border-color{border-color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-border-color{border-color: var(--wp--preset--color--luminous-vivid-orange) !important;}.has-luminous-vivid-amber-border-color{border-color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-border-color{border-color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-border-color{border-color: var(--wp--preset--color--vivid-green-cyan) !important;}.has-pale-cyan-blue-border-color{border-color: var(--wp--preset--color--pale-cyan-blue) !important;}.has-vivid-cyan-blue-border-color{border-color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-border-color{border-color: var(--wp--preset--color--vivid-purple) !important;}.has-vivid-cyan-blue-to-vivid-purple-gradient-background{background: var(--wp--preset--gradient--vivid-cyan-blue-to-vivid-purple) !important;}.has-light-green-cyan-to-vivid-green-cyan-gradient-background{background: var(--wp--preset--gradient--light-green-cyan-to-vivid-green-cyan) !important;}.has-luminous-vivid-amber-to-luminous-vivid-orange-gradient-background{background: var(--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange) !important;}.has-luminous-vivid-orange-to-vivid-red-gradient-background{background: var(--wp--preset--gradient--luminous-vivid-orange-to-vivid-red) !important;}.has-very-light-gray-to-cyan-bluish-gray-gradient-background{background: var(--wp--preset--gradient--very-light-gray-to-cyan-bluish-gray) !important;}.has-cool-to-warm-spectrum-gradient-background{background: var(--wp--preset--gradient--cool-to-warm-spectrum) !important;}.has-blush-light-purple-gradient-background{background: var(--wp--preset--gradient--blush-light-purple) !important;}.has-blush-bordeaux-gradient-background{background: var(--wp--preset--gradient--blush-bordeaux) !important;}.has-luminous-dusk-gradient-background{background: var(--wp--preset--gradient--luminous-dusk) !important;}.has-pale-ocean-gradient-background{background: var(--wp--preset--gradient--pale-ocean) !important;}.has-electric-grass-gradient-background{background: var(--wp--preset--gradient--electric-grass) !important;}.has-midnight-gradient-background{background: var(--wp--preset--gradient--midnight) !important;}.has-small-font-size{font-size: var(--wp--preset--font-size--small) !important;}.has-medium-font-size{font-size: var(--wp--preset--font-size--medium) !important;}.has-large-font-size{font-size: var(--wp--preset--font-size--large) !important;}.has-x-large-font-size{font-size: var(--wp--preset--font-size--x-large) !important;} :where(.wp-block-post-template.is-layout-flex){gap: 1.25em;}:where(.wp-block-post-template.is-layout-grid){gap: 1.25em;} :where(.wp-block-columns.is-layout-flex){gap: 2em;}:where(.wp-block-columns.is-layout-grid){gap: 2em;} :root :where(.wp-block-pullquote){font-size: 1.5em;line-height: 1.6;} </style> <script type="text/javascript" src="http://www.dnssec-deployment.org/wp-includes/js/jquery/jquery.min.js?ver=3.7.1" id="jquery-core-js"></script> <script type="text/javascript" src="http://www.dnssec-deployment.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1" id="jquery-migrate-js"></script> <script type="text/javascript" src="http://www.dnssec-deployment.org/wp-content/themes/ddi-fusion-wp/js/fusion.js?ver=6.7.2" id="fusion-js"></script> <link rel="https://api.w.org/" href="https://www.dnssec-deployment.org/wp-json/" /><link rel="EditURI" type="application/rsd+xml" title="RSD" href="https://www.dnssec-deployment.org/xmlrpc.php?rsd" /> <meta name="generator" content="WordPress 6.7.2" /> <script async src="https://www.googletagmanager.com/gtag/js?id=G-JC22ZJL8M3"></script> <script> window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} gtag('js', new Date()); gtag('config', 'G-JC22ZJL8M3'); </script> <style type="text/css">.recentcomments a{display:inline !important;padding:0 !important;margin:0 !important;}</style> <script type="text/javascript"> /* <![CDATA[ */ jQuery(document).ready(function(){ // body .safari class if (jQuery.browser.safari) jQuery('body').addClass('safari'); // layout controls jQuery("#layoutcontrol a").click(function() { switch (jQuery(this).attr("class")) { case 'setFont' : setFontSize(); break; case 'setLiquid' : setPageWidth(); break; } return false; }); // set the font size from cookie var font_size = jQuery.cookie('fontSize'); if (font_size == '.70em') { jQuery('body').css("font-size",".70em"); } if (font_size == '.95em') { jQuery('body').css("font-size",".95em"); } if (font_size == '.75em') { jQuery('body').css("font-size",".75em"); } // set the page width from cookie var page_width = jQuery.cookie('pageWidth'); if (page_width) jQuery('#page').css('width', page_width); jQuery('#post-extra-content').minitabs(333, 'slide'); if (document.all && !window.opera && !window.XMLHttpRequest && jQuery.browser.msie) { var isIE6 = true; } else { var isIE6 = false;} ; jQuery.browser.msie6 = isIE6; if (!isIE6) { initTooltips({ timeout: 6000 }); } tabmenudropdowns(); // some jquery effects... jQuery('#sidebar ul.nav li ul li a').mouseover(function () { jQuery(this).animate({ marginLeft: "4px" }, 100 ); }); jQuery('#sidebar ul.nav li ul li a').mouseout(function () { jQuery(this).animate({ marginLeft: "0px" }, 100 ); }); // scroll to top jQuery("a#toplink").click(function(){ jQuery('html').animate({scrollTop:0}, 'slow'); }); // set roles on some elements (for accessibility) jQuery("#tabs").attr("role","navigation"); jQuery("#mid-content").attr("role","main"); jQuery("#sidebar").attr("role","complementary"); jQuery("#searchform").attr("role","search"); }); /* ]]> */ </script> </head> <body class="home">  <div id="page-wrap1"> <div id="page-wrap2">  <div id="page" class="with-sidebar">  <div id="main-wrap">  <div id="mid-wrap">  <div id="side-wrap">  <div id="mid">  <div id="header"> <div id="topnav" class="description"> Improving the security of the Internet’s naming infrastructure</div> <a id="logo" href="https://www.dnssec-deployment.org/"><img src="https://www.dnssec-deployment.org/wp-content/uploads/DNSSEC320x100.jpg" title="DNSSEC Deployment" alt="DNSSEC Deployment" /></a>   <a href="https://www.dnssec-deployment.org/index.php/2012/02/are-you-secure/" id="dnssecsecure"><span></span></a>  <div id="tabs"> <ul> <li id="nav-homelink" class="current_page_item"><a href="https://www.dnssec-deployment.org" title="You are Home"><span><span>Home</span></span></a></li> <li class="page_item page-item-3203 page_item_has_children"><a href="https://www.dnssec-deployment.org/history/"><span><span>DNSSEC History Project</span></span></a> <ul class='children'> <li class="page_item page-item-3210"><a href="https://www.dnssec-deployment.org/history/about/"><span><span>About the DNSSEC History Project</span></span></a></li> <li class="page_item page-item-3217"><a href="https://www.dnssec-deployment.org/history/instigating-idea-for-dnssec-history-project/"><span><span>Instigating Idea for DNSSEC History Project</span></span></a></li> <li class="page_item page-item-3208"><a href="https://www.dnssec-deployment.org/history/timeline/"><span><span>Timeline</span></span></a></li> <li class="page_item page-item-3220"><a href="https://www.dnssec-deployment.org/history/archive/"><span><span>Archive</span></span></a></li> </ul> </li> <li class="page_item page-item-3250"><a href="https://www.dnssec-deployment.org/privacy-policy/"><span><span>Privacy Policy</span></span></a></li> <li class="page_item page-item-3308"><a href="https://www.dnssec-deployment.org/terms-of-use/"><span><span>Terms of Use</span></span></a></li> <li class="page_item page-item-184"><a href="https://www.dnssec-deployment.org/about-2/"><span><span>About</span></span></a></li> <li class="page_item page-item-48 page_item_has_children"><a href="https://www.dnssec-deployment.org/presentations-events-and-newsletters/"><span><span>Papers, Presentations, & Newsletters</span></span></a> <ul class='children'> <li class="page_item page-item-2092"><a href="https://www.dnssec-deployment.org/presentations-events-and-newsletters/dnssec-at-fose-2012/"><span><span>DNSSEC at FOSE 2012</span></span></a></li> <li class="page_item page-item-1212"><a href="https://www.dnssec-deployment.org/presentations-events-and-newsletters/dnssec-at-fose-2011/"><span><span>DNSSEC at FOSE 2011</span></span></a></li> <li class="page_item page-item-570"><a href="https://www.dnssec-deployment.org/presentations-events-and-newsletters/dnssec-at-fose-2010/"><span><span>DNSSEC at FOSE 2010</span></span></a></li> <li class="page_item page-item-62"><a href="https://www.dnssec-deployment.org/presentations-events-and-newsletters/govsec-2009/"><span><span>DNSSEC at GovSec 2009</span></span></a></li> <li class="page_item page-item-57"><a href="https://www.dnssec-deployment.org/presentations-events-and-newsletters/dnssec-this-month/"><span><span>DNSSEC This Month newsletters</span></span></a></li> <li class="page_item page-item-19"><a href="https://www.dnssec-deployment.org/presentations-events-and-newsletters/dnssec-deployment-roadmap/"><span><span>Roadmap</span></span></a></li> <li class="page_item page-item-45"><a href="https://www.dnssec-deployment.org/presentations-events-and-newsletters/deployment-guidlines/"><span><span>Guidelines</span></span></a></li> <li class="page_item page-item-1577"><a href="https://www.dnssec-deployment.org/presentations-events-and-newsletters/various/"><span><span>Various</span></span></a></li> <li class="page_item page-item-1717"><a href="https://www.dnssec-deployment.org/presentations-events-and-newsletters/video/"><span><span>Video</span></span></a></li> <li class="page_item page-item-1568"><a href="https://www.dnssec-deployment.org/presentations-events-and-newsletters/overtaken-by-events/"><span><span>Overtaken by Events</span></span></a></li> </ul> </li> </ul> </div>  </div>  <div id="mid-content">  <div id="post-3302" class="post-3302 post type-post status-publish format-standard hentry category-uncategorized"> <h3 class="title"><a href="https://www.dnssec-deployment.org/2020/05/call-for-participation-icann-dnssec-and-security-workshop-at-icann68-virtual-policy-forum-in-june-2020/" rel="bookmark" title="Permanent Link: Call for Participation — ICANN DNSSEC and Security Workshop at ICANN68 Virtual Policy Forum in June 2020">Call for Participation — ICANN DNSSEC and Security Workshop at ICANN68 Virtual Policy Forum in June 2020</a></h3>  <div class="postheader"> <div class="postinfo"> <p>Posted by <a href="https://www.dnssec-deployment.org/author/york/" title="Posts by Dan York ">Dan York</a> in <a href="https://www.dnssec-deployment.org/category/uncategorized/" rel="category tag">Uncategorized</a> on May 11, 2020 </p> </div> </div>  <div class="postbody entry clearfix"> <p>If you are interested in speaking at the ICANN 68 DNSSEC Workshop, please send a brief (1-2 sentence) description of your proposed presentation to <a class="" href="/cdn-cgi/l/email-protection#395d574a4a5c5a14524c585558554c54494c4b79504a565a17564b5e"><span class="__cf_email__" data-cfemail="1d79736e6e787e3076687c717c7168706d686f5d746e727e33726f7a">[email protected]</span></a><strong> </strong><strong>by 29 May 2020. This online workshop will be Monday, 22 June 2020, from 02:00 – 04:30 UTC (</strong>10:00 – 12:30 Kuala Lumpur)</p> <p><strong>****We are doing something new this time and would like to get a feel for attendance for this virtual meeting. Please RSVP here: <a class="" href="https://forms.gle/XSH7ZhZWrViDimNN9">https://forms.gle/XSH7ZhZWrViDimNN9</a>*****</strong></p> <h2 class="wp-block-heading">CALL FOR PARTICIPATION</h2> <p>The DNSSEC Deployment Initiative and the <a href="https://www.internetsociety.org/deploy360/">Internet Society Deploy360 Programme</a>, in cooperation with the ICANN Security and Stability Advisory Committee (SSAC), are planning a DNSSEC and Security Workshop for the ICANN68 Virtual Policy Forum being held from 22-25 June 2020. </p> <p><strong>This workshop will be held on Monday 22, June 2020 10:00 – 12:30 Kuala Lumpur (02:00 – 04:30 UTC).  </strong></p> <p>The DNSSEC and Security Workshop has been a part of ICANN meetings for several years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments.  For reference, the most recent session was held at the ICANN67 Virtual Meeting  on 11 March 2020. The presentations and transcripts are available at: <a class="" href="https://67.schedule.icann.org/meetings/1152570">https://67.schedule.icann.org/meetings/1152570</a></p> <p> The DNSSEC Workshop Program Committee is developing a 3-hour program.  Proposals will be considered for the following topic areas and included if space permits.  In addition, we welcome suggestions for additional topics either for inclusion in the ICANN68 workshop, or for consideration for future workshops.</p> <h3 class="wp-block-heading">1.  Global DNSSEC Activities Panel</h3> <p>For this panel, we are seeking participation from those who have been involved in DNSSEC deployment as well as from those who have not deployed DNSSEC but who have a keen interest in the challenges and benefits of deployment, including Root Key Signing Key (KSK) Rollover activities and plans.</p> <h3 class="wp-block-heading">2.  DNSSEC Best Practice</h3> <p>Now that DNSSEC has become an operational norm for many registries, registrars, and ISPs, what have we learned about how we manage DNSSEC?  Do you still submit/accept DS records with Digest Type 1? What is the best practice around key roll-overs?  What about Algorithm roll-overs? Do you use and support DNSKEY Algorithms 13-16? How often do you review your disaster recovery procedures? Is there operational familiarity within your customer support teams? What operational statistics have we gathered about DNSSEC? Are there experiences being documented in the form of best practices, or something similar, for transfer of signed zones?  Activities and issues related to DNSSEC in the DNS Root Zone are also desired.</p> <h3 class="wp-block-heading">3. DNSSEC Deployment Challenges</h3> <p>The program committee is seeking input from those that are interested in implementation of DNSSEC but have general or particular concerns with DNSSEC.  In particular, we are seeking input from individuals that would be willing to participate in a panel that would discuss questions of the following nature:</p> <ul class="wp-block-list"><li>Are there any policies directly or indirectly impeding your DNSSEC deployment? (RRR model, CDS/CDNSKEY automation)</li><li>What are your most significant concerns with DNSSEC, e.g., complexity, training, implementation, operation or something else?</li><li>What do you expect DNSSEC to do for you and what doesn’t it do?</li><li>What do you see as the most important trade-offs with respect to doing or not doing DNSSEC?</li></ul> <h3 class="wp-block-heading">4. Security Panel</h3> <p>The program committee is looking for presentations on DNS and Routing topics that could impact the security and/or stability of the Internet:</p> <ul class="wp-block-list"><li>DoH and DoT implementation issues, challenges and opportunities</li><li>RPKI adoption and implementation issues, challenges and opportunities</li><li>BGP/routing/hijack issues, challenges and opportunities</li><li>MANRS implementation challenges and opportunities</li><li>Emerging threats that could impact (real or perceived) the security and/or stability of the Internet</li><li>Domain hacking/hijacking prevention, best practice and techniques</li><li>Browser related security implementations</li><li>DMARC Challenges, opportunities and Best Practices</li><li>BGP Flowspec challenges, opportunities and Best Practices</li></ul> <p>If you are interested in participating, please send a brief (1-2 sentence) description of your proposed presentation to <br><a class="" href="/cdn-cgi/l/email-protection#05616b76766066286e70646964697068757077456c766a662b6a7762"><span class="__cf_email__" data-cfemail="abcfc5d8d8cec886c0decac7cac7dec6dbded9ebc2d8c4c885c4d9cc">[email protected]</span></a></p> <p><strong>by 29 May 2020.</strong></p> <p><strong>****We are doing something new this time and would like to get a feel for attendance for this virtual meeting. Please RSVP here: <a class="" href="https://forms.gle/XSH7ZhZWrViDimNN9">https://forms.gle/XSH7ZhZWrViDimNN9</a>*****</strong></p> <p>Thank you,<br>Kathy and Andrew<br>On behalf of the DNSSEC Workshop Program Committee:<br>Mark Elkins, DNS/ZACR<br>Jacques Latour, .CA<br>Russ Mundy, Parsons<br>Ondrej Filip, CZ.NIC<br>Yoshiro Yoneya, JPRS<br>Fred Baker, ISC<br>Dan York, Internet Society</p> </div> <p class="postcontrols"> <a class="no comments" href="https://www.dnssec-deployment.org/2020/05/call-for-participation-icann-dnssec-and-security-workshop-at-icann68-virtual-policy-forum-in-june-2020/#respond">No Comments</a> </p> <div class="clear"></div> </div>   <div id="post-3299" class="post-3299 post type-post status-publish format-standard hentry category-uncategorized"> <h3 class="title"><a href="https://www.dnssec-deployment.org/2020/01/call-for-participation-icann-dnssec-and-security-workshop-at-icann67-in-march-2020-in-cancun-mexico/" rel="bookmark" title="Permanent Link: Call for Participation — ICANN DNSSEC and Security Workshop at ICANN67 in March 2020 in Cancun, Mexico">Call for Participation — ICANN DNSSEC and Security Workshop at ICANN67 in March 2020 in Cancun, Mexico</a></h3>  <div class="postheader"> <div class="postinfo"> <p>Posted by <a href="https://www.dnssec-deployment.org/author/york/" title="Posts by Dan York ">Dan York</a> in <a href="https://www.dnssec-deployment.org/category/uncategorized/" rel="category tag">Uncategorized</a> on January 28, 2020 </p> </div> </div>  <div class="postbody entry clearfix"> <p>The ICANN Security and Stability Advisory Committee (SSAC) and the Internet Society Deploy360 Programme are planning a DNSSEC and Security Workshop during the <a href="https://meetings.icann.org/en/cancun67">ICANN67 meeting</a> held from 07-12 March 2020 in Cancun, Mexico. </p> <p>The original DNSSEC Workshop has been a part of ICANN meetings for many years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments. The program committee added a new focus on security to the workshop to address various emerging security related issues such as DoT/DoH impacts and potential abuses, impacts of RPKI deployments, BGP hijacking and other Internet related routing issues. </p> <p>For reference, the most recent session was held at the ICANN Annual General Meeting in Montreal, Quebec on 06 November 2019. The presentations and transcripts are available at: <a href="https://66.schedule.icann.org/meetings/1116787">https://66.schedule.icann.org/meetings/1116787</a> and <a href="https://66.schedule.icann.org/meetings/1116788">https://66.schedule.icann.org/meetings/1116788</a></p> <p>The DNSSEC and Security Workshop Program Committee is developing a 3-hour program. Proposals are sought for the following topic areas: </p> <p><strong>1. Global DNSSEC Activities Panel</strong></p> <p>For this panel, we are seeking participation from those who have been involved in DNSSEC deployment as well as from those who have not deployed DNSSEC but who have a keen interest in the challenges and benefits of deployment, including Root Key Signing Key (KSK) Rollover activities and plans.</p> <p><strong>2. DNSSEC Best Practice</strong></p> <p>Now that DNSSEC has become an operational norm for many registries, registrars, and ISPs, what have we learned about how we manage DNSSEC? Do you still submit/accept DS records with Digest Type 1? What is the best practice around key roll-overs? What about Algorithm roll-overs? Do you use and support DNSKEY Algorithms 13-16? How often do you review your disaster recovery procedures? Is there operational familiarity within your customer support teams? What operational statistics have we gathered about DNSSEC? Are there experiences being documented in the form of best practices, or something similar, for transfer of signed zones? Activities and issues related to DNSSEC in the DNS Root Zone are also desired.</p> <p><strong>3. DNSSEC Deployment Challenges</strong></p> <p>The program committee is seeking input from those that are interested in implementation of DNSSEC but have general or particular concerns with DNSSEC. In particular, we are seeking input from individuals that would be willing to participate in a panel that would discuss questions of the following nature:</p> <ul class="wp-block-list"><li>Are there any policies directly or indirectly impeding your DNSSEC deployment? (RRR model, CDS/CDNSKEY automation)</li><li>What are your most significant concerns with DNSSEC, e.g., complexity, training, implementation, operation or something else?</li><li>What do you expect DNSSEC to do for you and what doesn’t it do?</li><li>What do you see as the most important trade-offs with respect to doing or not doing DNSSEC?</li></ul> <p><strong>4. Security Panel</strong></p> <p>New to recent workshops, the program committee is looking for presentations on DNS and Routing topics that could impact the security and/or stability of the Internet.</p> <ul class="wp-block-list"><li>DoH and DoT issues, challenges and opportunities including misuse of the technologies (such as distribution of malware via DoH)</li><li>RPKI adoption and implementation issues, challenges and opportunities</li><li>BGP/routing/hijack issues, challenges and opportunities</li><li>MANRS implementation challenges and opportunities</li><li>Do multiple security mechanisms dilute the need for each of the mechanisms (e.g. DNSSEC, DoH and DoT)</li><li>Emerging threats that could impact (real or perceived) the security and/or stability of the internet</li><li>Domain hacking/hijacking prevention, best practice and techniques</li><li>Browser related security implementations</li><li>DMARC Challenges, opportunities and Best Practices</li><li>BGP Flowspec challenges, opportunities and Best Practices</li></ul> <p>In addition, we welcome suggestions for additional topics, either for inclusion in the ICANN67 workshop, or for consideration for future workshops.</p> <p>If you are interested in participating, please send a brief (1-2 sentence) description of your proposed presentation to <a href="/cdn-cgi/l/email-protection#35515b464650561856545b56405b755c465a561b5a4752"><span class="__cf_email__" data-cfemail="b5d1dbc6c6d0d698d6d4dbd6c0dbf5dcc6dad69bdac7d2">[email protected]</span></a> by 07 February 2020.</p> <p>Thank you,<br> Andrew and Kathy<br> On behalf of the DNSSEC and Security Workshop Program Committee:<br> Mark Elkins, DNS/ZACR<br> Jacques Latour, .CA<br> Russ Mundy, Parsons<br> Ondrej Filip, CZ.NIC<br> Yoshiro Yoneya, JPRS<br> Fred Baker, ISC<br> Dan York, Internet Society</p> </div> <p class="postcontrols"> <a class="no comments" href="https://www.dnssec-deployment.org/2020/01/call-for-participation-icann-dnssec-and-security-workshop-at-icann67-in-march-2020-in-cancun-mexico/#respond">No Comments</a> </p> <div class="clear"></div> </div>   <div id="post-3296" class="post-3296 post type-post status-publish format-standard hentry category-uncategorized"> <h3 class="title"><a href="https://www.dnssec-deployment.org/2019/11/slides-and-video-available-for-icann-66-dnssec-workshop/" rel="bookmark" title="Permanent Link: Slides and video available for ICANN 66 DNSSEC Workshop">Slides and video available for ICANN 66 DNSSEC Workshop</a></h3>  <div class="postheader"> <div class="postinfo"> <p>Posted by <a href="https://www.dnssec-deployment.org/author/york/" title="Posts by Dan York ">Dan York</a> in <a href="https://www.dnssec-deployment.org/category/uncategorized/" rel="category tag">Uncategorized</a> on November 18, 2019 </p> </div> </div>  <div class="postbody entry clearfix"> <p>The slides and video recording of the DNSSEC Workshop held at the ICANN 66 meeting on November 6, 2019, can now be found at these two links:</p> <ul class="wp-block-list"><li><a href="https://66.schedule.icann.org/meetings/1116787">https://66.schedule.icann.org/meetings/1116787</a></li><li><a href="https://66.schedule.icann.org/meetings/1116788">https://66.schedule.icann.org/meetings/1116788</a></li></ul> <p>The full agenda for the session was:</p> <ul class="wp-block-list"><li>1330-1345 – Presentation: Dan York, ISOC — DNSSEC Workshop Introduction, Program, Deployment Around the World – Counts, Counts, Counts </li><li>1345-1405 – Daniel Migault, Ericsson and Dan York, ISOC – Internet Draft: Best Practices for DNSSECValidating Resolvers </li><li>1405-1425 – Russ Mundy, Parsons – RPKI Introduction </li><li>1425-1445 – Update on the next KSK Roll – Kim Davies, ICANN </li><li>14:45-15:00 – Yoshiro Yoneya, JRPS – Towards Detecting DNNSEC validation failure with passive measurements at TLD DNS Servers </li><li>1515-1535 – Jaap Akkerhuis , NLnet Labs – Routing Security </li><li>1535-1555 – Dan York, ISOC – MANRS Observatory </li><li>1555-1615 – Marc Van Wesemael, EURid and Lieven Desemt, KU Leuven – Detection and prevention of domain name abuse in .eu. </li></ul> <p>1615-1645 – Workshop Summary</p> <p>The next DNSSEC Workshop will be held <a href="https://meetings.icann.org/en/cancun67">at ICANN 67 in Cancún in March 2020</a>. Watch for the Call for Presentations coming soon!</p> </div> <p class="postcontrols"> <a class="no comments" href="https://www.dnssec-deployment.org/2019/11/slides-and-video-available-for-icann-66-dnssec-workshop/#respond">No Comments</a> </p> <div class="clear"></div> </div>   <div id="post-3292" class="post-3292 post type-post status-publish format-standard hentry category-uncategorized"> <h3 class="title"><a href="https://www.dnssec-deployment.org/2019/09/call-for-participation-icann-dnssec-and-security-workshop-at-icann66-montreal-canada/" rel="bookmark" title="Permanent Link: Call for Participation – ICANN DNSSEC and Security Workshop at ICANN66, Montreal, Canada">Call for Participation – ICANN DNSSEC and Security Workshop at ICANN66, Montreal, Canada</a></h3>  <div class="postheader"> <div class="postinfo"> <p>Posted by <a href="https://www.dnssec-deployment.org/author/york/" title="Posts by Dan York ">Dan York</a> in <a href="https://www.dnssec-deployment.org/category/uncategorized/" rel="category tag">Uncategorized</a> on September 24, 2019 </p> </div> </div>  <div class="postbody entry clearfix"> <p>The ICANN Security and Stability Advisory Committee (SSAC) and the Internet Society Deploy360 Programme are planning a DNSSEC and Security Workshop on Wednesday, 06 November 2019, during the ICANN66 meeting held from 02-07 November 2019 in Montreal, Canada. The original DNSSEC Workshop has been a part of ICANN meetings for many years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments. </p> <p>For the upcoming ICANN 66 session, the program committee added a new focus on security to the workshop to address various emerging security related issues such as DNS-over-TLS (DoT) / DNS-over-HTTPS(DoH) impacts and potential abuses, impacts of RPKI deployments, BGP hijacking and other Internet related routing issues. </p> <p>For reference, the most recent session was held at the ICANN Policy Forum in Marrakech, Morocco on 24 June 2019. The presentations and transcripts are available at: <a href="https://65.schedule.icann.org/meetings/1058207">https://65.schedule.icann.org/meetings/1058207</a> and <a href="https://65.schedule.icann.org/meetings/1058208">https://65.schedule.icann.org/meetings/1058208</a>.</p> <p>The DNSSEC and Security Workshop Program Committee is developing a 3-hour program. Proposals are sought for the following topic areas: </p> <h2 class="wp-block-heading"><strong>1. Global DNSSEC Activities Panel</strong></h2> <p>For this panel, we are seeking participation from those who have been involved in DNSSEC deployment as well as from those who have not deployed DNSSEC but who have a keen interest in the challenges and benefits of deployment, including Root Key Signing Key (KSK) Rollover activities and plans.</p> <h2 class="wp-block-heading"><strong>2. DNSSEC Best Practice</strong></h2> <p>Now that DNSSEC has become an operational norm for many registries, registrars, and ISPs, what have we learned about how we manage DNSSEC? Do you still submit/accept DS records with Digest Type 1? What is the best practice around key roll-overs? What about Algorithm roll-overs? Do you use and support DNSKEY Algorithms 13-16? How often do you review your disaster recovery procedures? Is there operational familiarity within your customer support teams? What operational statistics have we gathered about DNSSEC? Are there experiences being documented in the form of best practices, or something similar, for transfer of signed zones? Activities and issues related to DNSSEC in the DNS Root Zone are also desired.</p> <h2 class="wp-block-heading"><strong>3. DNSSEC Deployment Challenges</strong></h2> <p>The program committee is seeking input from those that are interested in implementation of DNSSEC but have general or particular concerns with DNSSEC. In particular, we are seeking input from individuals that would be willing to participate in a panel that would discuss questions of the following nature:</p> <ul class="wp-block-list"><li>Are there any policies directly or indirectly impeding your DNSSEC deployment? (RRR model, CDS/CDNSKEY automation)</li><li>What are your most significant concerns with DNSSEC, e.g., complexity, training, implementation, operation or something else?</li><li>What do you expect DNSSEC to do for you and what doesn’t it do?</li><li>What do you see as the most important trade-offs with respect to doing or not doing DNSSEC?</li></ul> <h2 class="wp-block-heading"><strong>4. Security Panel</strong></h2> <p>New to the workshop, the program committee is looking for presentations on DNS and Routing topics that could impact the security and/or stability of the internet.</p> <ul class="wp-block-list"><li>DoH and DoT implementation issues, challenges and opportunities</li><li>RPKI adoption and implementation issues, challenges and opportunities</li><li>BGP/routing/hijack issues, challenges and opportunities</li><li><a href="https://www.manrs.org/">MANRS</a> implementation challenges and opportunities</li><li>Emerging threats that could impact (real or perceived) the security and/or stability of the internet</li><li>Domain hacking/hijacking prevention, best practice and techniques</li><li>Browser related security implementations</li><li>DMARC Challenges, opportunities and Best Practices</li><li>BGP Flowspec challenges, opportunities and Best Practices</li></ul> <p>In addition, we welcome suggestions for additional topics, either for inclusion in the ICANN66 workshop, or for consideration for future workshops.</p> <p class="has-background has-pale-pink-background-color">If you will be at ICANN 66 in Montreal (or can get there) and are interested in participating, <strong>please send a brief (1-2 sentence) description of your proposed presentation to <a href="/cdn-cgi/l/email-protection#a5c1cbd6d6c0c688c8cacbd1d7c0c4c9e5ccd6cac68bcad7c2"><span class="__cf_email__" data-cfemail="294d475a5a4c4a044446475d5b4c484569405a464a07465b4e">[email protected]</span></a> by Friday, 27 September 2019 </strong></p> <p><br> Thank you,<br> Andrew and Kathy<br> On behalf of the DNSSEC and Security Workshop Program Committee:<br> Mark Elkins, DNS/ZACR<br> Jacques Latour, .CA<br> Russ Mundy, Parsons<br> Ondrej Filip, CZ.NIC<br> Yoshiro Yoneya, JPRS<br> Fred Baker, ISC<br> Dan York, Internet Society</p> </div> <p class="postcontrols"> <a class="no comments" href="https://www.dnssec-deployment.org/2019/09/call-for-participation-icann-dnssec-and-security-workshop-at-icann66-montreal-canada/#respond">No Comments</a> </p> <div class="clear"></div> </div>   <div id="post-3283" class="post-3283 post type-post status-publish format-standard hentry category-uncategorized"> <h3 class="title"><a href="https://www.dnssec-deployment.org/2019/05/call-for-participation-dnssec-workshop-at-icann65-marrakech-morocco/" rel="bookmark" title="Permanent Link: Call for Participation – DNSSEC Workshop at ICANN65, Marrakech, Morocco">Call for Participation – DNSSEC Workshop at ICANN65, Marrakech, Morocco</a></h3>  <div class="postheader"> <div class="postinfo"> <p>Posted by <a href="https://www.dnssec-deployment.org/author/mlarson/" title="Posts by mlarson ">mlarson</a> in <a href="https://www.dnssec-deployment.org/category/uncategorized/" rel="category tag">Uncategorized</a> on May 22, 2019 </p> </div> </div>  <div class="postbody entry clearfix"> <p>The DNSSEC Deployment Initiative and the Internet Society Deploy360 Programme, in cooperation with the ICANN Security and Stability Advisory Committee (SSAC), are planning a DNSSEC Workshop during the ICANN65 meeting held from 24-27 June 2019 in Marrakech, Morocco. The DNSSEC Workshop has been a part of ICANN meetings for several years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments. For reference, the most recent session was held at the ICANN Community Forum in Kobe, Japan on 13 March 2019. The presentations and transcripts are available at: <a class="" href="https://urldefense.proofpoint.com/v2/url?u=https-3A__64.schedule.icann.org_meetings_961937&d=DwMGaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=_qSa12UaM5Nl6sbpmBZnYyeUu-qJt2ubgQJechcqldM&m=9xLxNCs1qNpGeSXFyID2YilcI2aF7JQUuTNdXs1sXeM&s=tZbYeBzDUuhhtALlthJ9OqdNpf37F06-cdjHuxLjIO8&e=">https://64.schedule.icann.org/meetings/961937 </a>, <a class="" href="https://64.schedule.icann.org/meetings/961938">https://64.schedule.icann.org/meetings/961938</a>,and <a class="" href="https://64.schedule.icann.org/meetings/961939">https://64.schedule.icann.org/meetings/961939</a>. </p> <p>The DNSSEC Workshop Program Committee is developing a 3-hour program. Proposals will be considered for the following topic areas and included if space permits. In addition, we welcome suggestions for additional topics either for inclusion in the ICANN65 workshop, or for consideration for future workshops. </p> <h2 class="wp-block-heading">1. DNSSEC Activities Panel (Regional and global)</h2> <p>For this panel, we are seeking participation from those who have been involved in DNSSEC deployment in the region and also from those who have not deployed DNSSEC but who have a keen interest in the challenges and benefits of deployment, including Root Key Signing Key (KSK) Rollover activities. Now that DNSSEC has become an operational norm for many registries, registrars, and ISPs, what have we learned about how we manage DNSSEC? What is the best practice around key rollovers? How often do you review your disaster recovery procedures? Is there operational familiarity within your customer support teams? What operational statistics have we gathered about DNSSEC? Are there experiences being documented in the form of best practices, or something similar, for transfer of signed zones?If you have a specific concern about the Root Key Rollover, or believe you have a method or solution to help address impacts, we would like to hear from you. </p> <h2 class="wp-block-heading">2. DNSSEC Deployment Challenges</h2> <p>The program committee is seeking input from those that are interested in implementation of DNSSEC but have general or particular concerns with DNSSEC. In particular, we are seeking input from individuals that would be willing to participate in a panel that would discuss questions of the nature:</p> <ul class="wp-block-list"><li> Are there any policies directly or indirectly impeding your DNSSEC deployment? (RRR model, CDS/CDNSKEY automation)</li><li>What are your most significant concerns with DNSSEC, e.g., complexity, training, implementation, operation or something else?</li><li>What do you expect DNSSEC to do for you and what doesn’t it do?</li><li>What do you see as the most important trade-offs with respect to doing or not doing DNSSEC? </li></ul> <p>We are interested in presentations related to any aspect of DNSSEC such as zone signing, DNS response validation, applications use of DNSSEC, registry/registrar DNSSEC activities, etc. </p> <p> In addition, we welcome suggestions for additional topics. </p> <p>If you are interested in participating, please send a brief (1-2 sentence) description of your proposed presentation to <a class="" href="/cdn-cgi/l/email-protection#177379646472743a7a766565767c72747f577e64787439786570"><span class="__cf_email__" data-cfemail="8de9e3fefee8eea0e0ecffffece6e8eee5cde4fee2eea3e2ffea">[email protected]</span></a><strong>by **Friday, 31 May 2019**</strong> </p> <p>Thank you,<br>Kathy and Julie</p> <p>On behalf of the DNSSEC Workshop Program Committee:<br>Mark Elkins, DNS/ZACR<br>Jean Robert Hountomey, AfricaCERT<br>Jacques Latour, .CA<br>Xiaodong Lee, Chinese Academy of Sciences (CAS)<br>Russ Mundy, Parsons<br>Ondrej Filip, CZ.NIC<br>Yoshiro Yoneya, JPRS<br>Dan York, Internet Society </p> </div> <p class="postcontrols"> <a class="no comments" href="https://www.dnssec-deployment.org/2019/05/call-for-participation-dnssec-workshop-at-icann65-marrakech-morocco/#respond">No Comments</a> </p> <div class="clear"></div> </div>   <div id="post-3271" class="post-3271 post type-post status-publish format-standard hentry category-icann-dnssec-workshops tag-icann tag-icann64"> <h3 class="title"><a href="https://www.dnssec-deployment.org/2019/01/call-for-participation-icann-64-dnssec-workshop-in-kobe-japan-march-2019/" rel="bookmark" title="Permanent Link: Call for Participation – ICANN 64 DNSSEC Workshop in Kobe, Japan – March 2019">Call for Participation – ICANN 64 DNSSEC Workshop in Kobe, Japan – March 2019</a></h3>  <div class="postheader"> <div class="postinfo"> <p>Posted by <a href="https://www.dnssec-deployment.org/author/york/" title="Posts by Dan York ">Dan York</a> in <a href="https://www.dnssec-deployment.org/category/icann-dnssec-workshops/" rel="category tag">ICANN DNSSEC Workshops</a> on January 29, 2019 </p> </div> </div>  <div class="postbody entry clearfix"> <p>The DNSSEC Deployment Initiative and the Internet Society <a href="https://www.internetsociety.org/deploy360/">Deploy360 Programme</a>, in cooperation with the ICANN Security and Stability Advisory Committee (SSAC), are planning a <a href="https://www.internetsociety.org/deploy360/dnssec/">DNSSEC</a> Workshop during the ICANN64 meeting held from 09-14 March 2019 in Kobe, Japan. The DNSSEC Workshop has been a part of ICANN meetings for several years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments.</p> <p>For reference, the most recent session was held at the ICANN Annual General Meeting in Barcelona, Spain, on 24 October 2018. The presentations and transcripts are available at: <a href="https://63.schedule.icann.org/meetings/901549">https://63.schedule.icann.org/meetings/901549</a>, <a href="https://63.schedule.icann.org/meetings/901554">https://63.schedule.icann.org/meetings/901554</a>, and <a href="https://63.schedule.icann.org/meetings/901555">https://63.schedule.icann.org/meetings/901555</a>.</p> <p>At ICANN64 we are particularly interested in live demonstrations of uses of DNSSEC, DS automation or DANE. Examples might include:</p> <ul> <li>DNSSEC automation and deployment using CDS, CDNSKEY, and CSYNC</li> <li>DNSSEC/DANE validation in browsers and in applications</li> <li>Secure email / email encryption using DNSSEC, OPENPGPKEY, or S/MIME</li> <li>DNSSEC signing solutions and innovation (monitoring, managing, validation)</li> <li>Tools for automating the generation of DNSSEC/DANE records</li> <li>Extending DNSSEC/DANE with authentication, SSH, XMPP, SMTP, S/MIME or PGP/GPG and other protocols</li> </ul> <p>Our interest is to provide current examples of the state of development and to show real-world examples of how DNSSEC and DANE related innovation can be used to increase the overall security of the Internet.<br /> We are open to presentations and demonstrations related to any topic associated with DNSSEC and DANE. Examples of the types of topics we are seeking include:</p> <p><strong>1. DNSSEC Panel (Regional and Global)</strong></p> <p>For this panel, we are seeking participation from those who have been involved in DNSSEC deployment in the region and also from those who have not deployed DNSSEC but who have a keen interest in the challenges and benefits of deployment. In particular, we will consider the following questions: Are you interested in reporting on DNSSEC validation of your ISPs? What can DNSSEC do for you? What doesn’t it do? What are the internal tradeoffs to implementing DNSSEC? What did you learn in your deployment of DNSSEC? We are interested in presentations from both people involved with the signing of domains and people involved with the deployment of DNSSEC-validating DNS resolvers.</p> <p><strong>2. DS Automation</strong></p> <p>We are looking at innovative ways to automate the parent child synchronization CDS / CDNSKEY and methods to bootstrap new or existing domains. We are also interested in development or plans related to CSYNC, which are aimed at keeping the glue up to date.<br /> We would like to hear from DNS Operators what their current thoughts on CDS/CDNSKEY automation are.</p> <p><strong>3. DNSSEC/DANE Support in the browsers</strong></p> <p>We would be interested in hearing from browser developers what their plans are in terms of supporting DNSSEC/DANE validation.</p> <p><strong>4. DANE Automation</strong></p> <p>For DNSSEC to reach massive deployment levels it is clear that a higher level of automation is required than is currently available. There also is strong interest for DANE usage within web transactions as well as for securing email and Voice-over-IP (VoIP). We are seeking presentations on topics such as:</p> <ul> <li>How can the industry use DANE and other DNSSEC applications as a mechanism for creating a more secure Internet?</li> <li>What tools, systems and services are available to help automate DNSSEC key management?</li> <li>Can you provide an analysis of current tools/services and identify gaps?</li> <li>What are some of the new and innovative uses of DANE and other DNSSEC applications in new areas or industries?</li> <li>What tools and services are now available that can support DANE usage?</li> </ul> <p>We would be particularly interested in any live demonstrations of DNSSEC / DANE application automation and services. Demonstrations of new tools that make the setup of DNSSEC or DANE more automated would also be welcome.</p> <p><strong>If you are interested in participating</strong>, please send a brief (1-2 sentence) description of your proposed presentation to<br /> <a href="/cdn-cgi/l/email-protection#482c263b3b2d2b6523272a2d08213b272b66273a2f"><strong><span class="__cf_email__" data-cfemail="cda9a3bebea8aee0a6a2afa88da4bea2aee3a2bfaa">[email protected]</span></strong></a> before ** <strong>07 February 2019</strong> **</p> <p>We hope that you can join us.<br /> Thank you,<br /> Kathy Schnitt</p> <p>On behalf of the DNSSEC Workshop Program Committee:<br /> Jean Robert Hountomey, AfricaCERT<br /> Jacques Latour, .CA<br /> Russ Mundy, Parsons<br /> Ondřej Filip, CZ.NIC<br /> Yoshiro Yoneya, JPRS<br /> Dan York, Internet Society<br /> Mark Elkins, DNS/ZACR</p> </div> <p class="tags"><a href="https://www.dnssec-deployment.org/tag/icann/" rel="tag">ICANN</a>, <a href="https://www.dnssec-deployment.org/tag/icann64/" rel="tag">ICANN64</a></p> <p class="postcontrols"> <a class="no comments" href="https://www.dnssec-deployment.org/2019/01/call-for-participation-icann-64-dnssec-workshop-in-kobe-japan-march-2019/#respond">No Comments</a> </p> <div class="clear"></div> </div>   <div id="post-3196" class="post-3196 post type-post status-publish format-standard hentry category-icann-dnssec-workshops tag-icann tag-icann59"> <h3 class="title"><a href="https://www.dnssec-deployment.org/2017/05/call-for-participation-dnssec-workshop-at-icann59-policy-forum-in-johannesburg-south-africa/" rel="bookmark" title="Permanent Link: Call for Participation – DNSSEC Workshop at ICANN59 Policy Forum in Johannesburg, South Africa">Call for Participation – DNSSEC Workshop at ICANN59 Policy Forum in Johannesburg, South Africa</a></h3>  <div class="postheader"> <div class="postinfo"> <p>Posted by <a href="https://www.dnssec-deployment.org/author/york/" title="Posts by Dan York ">Dan York</a> in <a href="https://www.dnssec-deployment.org/category/icann-dnssec-workshops/" rel="category tag">ICANN DNSSEC Workshops</a> on May 8, 2017 </p> </div> </div>  <div class="postbody entry clearfix"> <p><a href="https://meetings.icann.org/en/johannesburg59"><img decoding="async" class="alignright size-full wp-image-3197" src="https://www.dnssec-deployment.org/wp-content/uploads/2017/05/icann59-logo.jpg" alt="ICANN 59 logo" width="275" height="156" /></a>The DNSSEC Deployment Initiative and the <a href="https://www.internetsociety.org/deploy360">Internet Society Deploy360 Programme</a>, in cooperation with the ICANN Security and Stability Advisory Committee (SSAC), are planning a DNSSEC Workshop at t<a href="https://meetings.icann.org/en/johannesburg59">he ICANN59 Policy Forum 26-29 June 2017 in Johannesburg, South Africa</a>. The DNSSEC Workshop has been a part of ICANN meetings for several years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments. For reference, the last Policy Forum DNSSEC Workshop was at the ICANN meeting in Helsinki, Finland on 27 June 2016. The presentations and transcripts are available at: <a href="https://icann562016.sched.com/event/7NCj/dnssec-workshop-part-1">https://icann562016.sched.com/event/7NCj/dnssec-workshop-part-1</a>.</p> <p>The DNSSEC Workshop Program Committee is close to finalizing the 3-hour program. Proposals will be considered for the following topic areas and included if space permits. In addition, we welcome suggestions for additional topics either for inclusion in the ICANN59 workshop, or for consideration for future workshops.</p> <p><strong>1. DNSSEC Deployment Challenges</strong></p> <p>The program committee is seeking input from those that are interested in implementation of DNSSEC but have general or particular concerns with DNSSEC. In particular, we are seeking input from individuals that would be willing to participate in a panel that would discuss questions of the nature:<br /> — What are your most significant concerns with DNSSEC, e.g., implementation, operation or something else?<br /> — What do you expect DNSSEC to do for you and what doesn’t it do?<br /> — What do you see as the most important trade-offs with respect to doing or not doing DNSSEC?<br /> We are interested in presentations related to any aspect of DNSSEC such as zone signing, DNS response validation, applications use of DNSSEC, registry/registrar DNSSEC activities, etc.</p> <p><strong>2. Preparation for Root Key Signing Key (KSK) Rollover</strong></p> <p>In preparation for the root KSK rollover, we would like to bring together a panel of people who can talk about what the potential impacts may be to ISPs, equipment providers and end users, and also what can be done to potentially mitigate those issues. In particular, we are seeking participation from vendors, ISPs, and the community that will be affected by distribution of new root keys. We would like to be able to offer suggestions out of this panel to the wider technical community. If you have a specific concern about the Root Key Rollover, or believe you have a method or solution to help address impacts, we would like to hear from you. For more information on the root KSK rollover see the guide at: <a href="https://www.icann.org/en/system/files/files/ksk-rollover-quick-guide-prepare-systems-03apr17-en.pdf">https://www.icann.org/en/system/files/files/ksk-rollover-quick-guide-prepare-systems-03apr17-en.pdf</a>.</p> <p>If you are interested in participating, please send a brief (1-2 sentence) description of your proposed presentation to <a href="/cdn-cgi/l/email-protection#5b3f3528283e38763134333a35353e28392e293c1b322834387534293c"><strong><span class="__cf_email__" data-cfemail="bfdbd1ccccdadc92d5d0d7ded1d1daccddcacdd8ffd6ccd0dc91d0cdd8">[email protected]</span></strong></a> by <strong>Friday, 19 May 2017</strong></p> <p>Thank you,<br /> Julie Hedlund</p> <p>On behalf of the DNSSEC Workshop Program Committee:</p> <p>Mark Elkins, DNS/ZACR<br /> Jean Robert Hountomey, AfricaCERT<br /> Jacques Latour, .CA<br /> Xiaodong Lee, CNNIC<br /> Russ Mundy, Parsons<br /> Ondřej Surý, CZ.NIC<br /> Yoshiro Yoneya, JPRS<br /> Dan York, Internet Society</p> </div> <p class="tags"><a href="https://www.dnssec-deployment.org/tag/icann/" rel="tag">ICANN</a>, <a href="https://www.dnssec-deployment.org/tag/icann59/" rel="tag">ICANN59</a></p> <p class="postcontrols"> <a class="no comments" href="https://www.dnssec-deployment.org/2017/05/call-for-participation-dnssec-workshop-at-icann59-policy-forum-in-johannesburg-south-africa/#respond">No Comments</a> </p> <div class="clear"></div> </div>   <div id="post-3192" class="post-3192 post type-post status-publish format-standard hentry category-icann-dnssec-workshops tag-icann tag-icann58"> <h3 class="title"><a href="https://www.dnssec-deployment.org/2017/03/icann-58-list-of-dnssec-activities-march-12-15-2017/" rel="bookmark" title="Permanent Link: ICANN 58: List of DNSSEC Activities March 12-15, 2017">ICANN 58: List of DNSSEC Activities March 12-15, 2017</a></h3>  <div class="postheader"> <div class="postinfo"> <p>Posted by <a href="https://www.dnssec-deployment.org/author/york/" title="Posts by Dan York ">Dan York</a> in <a href="https://www.dnssec-deployment.org/category/icann-dnssec-workshops/" rel="category tag">ICANN DNSSEC Workshops</a> on March 9, 2017 </p> </div> </div>  <div class="postbody entry clearfix"> <p><img decoding="async" class="alignright size-full wp-image-3187" src="https://www.dnssec-deployment.org/wp-content/uploads/2016/12/icann-58.jpg" alt="ICANN 58 logo" width="135" height="144" />ICANN 58 takes place next week in Copenhagen, Denmark, and there will be some excellent technical content about <a href="http://www.internetsociety.org/deploy360/dnssec/">DNSSEC</a> and <a href="http://www.internetsociety.org/deploy360/resources/dane/">DANE</a> happening in several sessions from March 12-15, 2017.</p> <p>All times below are <a href="https://www.timeanddate.com/time/zones/cet">Central European Time (CET)</a>, which is UTC+1.</p> <hr /> <h2>DNSSEC For Everybody: A Beginner’s Guide – Sunday, 12 March</h2> <p>On Sunday, March 12, 2017, we’ll have the “<a href="https://schedule.icann.org/event/9nnk/dnssec-for-everybody-a-beginners-guide"><strong>DNSSEC For Everybody: A Beginner’s Guide</strong></a>” session that will include our usual skit where a bunch of engineers act out how DNS and DNSSEC work! Yes, it’s a good bit of fun and people have told us it has helped tremendously.</p> <ul> <li><strong>17:00-18:30 – Hall A3</strong></li> <li>More info: <a href="https://schedule.icann.org/event/9nnk/dnssec-for-everybody-a-beginners-guide">https://schedule.icann.org/event/9nnk/dnssec-for-everybody-a-beginners-guide</a></li> <li><strong>WATCH LIVE</strong>: <a href="https://participate.icann.org/cph58-halla3">https://participate.icann.org/cph58-halla3</a></li> </ul> <p>Please come with your questions and prepare to learn all about DNSSEC!</p> <hr /> <p><strong>Tech Day – Monday, 13 March</strong></p> <p>The Monday of most ICANN meetings includes the ccNSO “Tech Day”. While the current agenda does not include anything specific to DNSSEC or DANE, there is a session about DNS Privacy (DPRIVE) that may of of interest to some. See this link for more information:</p> <ul> <li><a href="https://schedule.icann.org/event/9npp/tech-day-part-1">https://schedule.icann.org/event/9npp/tech-day-part-1</a></li> </ul> <hr /> <h2>Root Key Signing Key Rollover: Changing the Keys to the Domain Name System – Tuesday, 14 March</h2> <p>On Tuesday, March 14, ICANN staff will offer a special session talking about the Root Key Rollover process. While we’ll also have some of this info in the Wednesday DNSSEC Workshop, this special session may be of interest to some. The abstract is:</p> <blockquote><p><em>The keys to the Domain Name System are changing for the first time ever. ICANN operates the root zone key signing key (KSK), which is the “master” key for DNS Security Extensions (DNSSEC). This cryptographic key was created when the root zone was signed in 2010. In this session, members of ICANN’s Technical Team will provide an update on the KSK rollover and answer community questions. This session will be of particular interest to Internet service providers, enterprise network operators and others who have enabled DNSSEC validation.</em></p></blockquote> <ul> <li><strong>17:00-18:15 – Hall B3</strong></li> <li>More info: <a href="https://schedule.icann.org/event/9nqE/root-key-signing-key-rollover-changing-the-keys-to-the-domain-name-system">https://schedule.icann.org/event/9nqE/root-key-signing-key-rollover-changing-the-keys-to-the-domain-name-system</a></li> <li><strong>WATCH LIVE</strong>: <a href="https://participate.icann.org/cph58-hallb3">https://participate.icann.org/cph58-hallb3</a></li> </ul> <hr /> <h2><strong>DNSSEC Implementers Gathering – TUESDAY, 14 March</strong></h2> <p>Later in the evening of Tuesday, March 14, we’ll have our informal “<em>DNSSEC Implementers Gathering</em>” bringing together people who have implemented DNSSEC or DANE in some way for a time to share information, have conversation and light snacks. We’ll gather at a local restaurant / pub in the city of Copenhagen. Invitations have gone out to various DNSSEC mailing lists – if you are interested in attending please send a message to me at <a href="/cdn-cgi/l/email-protection#067f69746d466f75696528697461"><span class="__cf_email__" data-cfemail="96eff9e4fdd6ffe5f9f5b8f9e4f1">[email protected]</span></a>. <strong>We thank DK Hostmaster for their generous sponsorship of this gathering at ICANN 58!</strong></p> <p>Please note: This gathering takes place on <em>Tuesday</em> evening in Copenhagen versus the usual <em>Monday</em> evening. As may be obvious, there is no remote participation option.</p> <hr /> <h2>DNSSEC Workshop – 15 March</h2> <p>Our main 6-hour workshop will take place on Wednesday, 15 March, from <strong>09:00 – 15:00 in Hall A3</strong>. Lunch will be included.</p> <p><strong>THANK YOU TO OUR LUNCH SPONSORS: Afilias, CIRA, and SIDN.</strong></p> <p>The very full agenda includes:</p> <ul> <li>DNSSEC Workshop Introduction, Program, Deployment Around the World – Counts, Counts, Counts</li> <li>Panel: DNSSEC Activities in the European Region</li> <li>Update on IETF DNSSEC Activities</li> <li>Root Key Rollover Update</li> <li>Panel: Validation in ISPs – Root Key Rollover Preparation</li> <li>Demonstration: Opportunistic IPsec using DNSSEC implementation</li> <li>State of ECDSA adoption in (cc)TLDs</li> <li>The Great DNSSEC/DNS Quiz</li> <li>Trusted Email Services</li> <li>Demonstration: SMILLA, an SMIMEA aware MILTER-program for SMTP servers</li> <li>DNSSEC – How Can I Help?</li> </ul> <p>It should be an excellent session!</p> <ul> <li><strong>09:00 – 15:00, Hall A3</strong></li> <li><strong>WATCH LIVE: </strong><a href="https://participate.icann.org/cph58-halla3">https://participate.icann.org/cph58-halla3</a></li> <li>More info and slides are available from these URLs (ICANN’s online schedule system breaks it up into sections based on breaks and lunch): <ul> <li><a href="https://schedule.icann.org/event/9no9/dnssec-workshop-part-1">https://schedule.icann.org/event/9no9/dnssec-workshop-part-1</a></li> <li><a href="https://schedule.icann.org/event/9noA/dnssec-workshop-part-ii">https://schedule.icann.org/event/9noA/dnssec-workshop-part-ii</a></li> <li><a href="https://schedule.icann.org/event/9noB/dnssec-workshop-part-iii">https://schedule.icann.org/event/9noB/dnssec-workshop-part-iii</a></li> </ul> </li> </ul> <hr /> <p>I will be there in Copenhagen and am looking forward to giving multiple presentations during the Wednesday session. It’s always a great gathering of some of the best technical people involved with DNS.</p> <p>Please do join us for a great set of sessions about how we can work together to make the DNS more secure and trusted!</p> <p>If you would like more information about DNSSEC or DANE, <a href="/deploy360/start/">please visit our Start Here page</a> to begin.</p> </div> <p class="tags"><a href="https://www.dnssec-deployment.org/tag/icann/" rel="tag">ICANN</a>, <a href="https://www.dnssec-deployment.org/tag/icann58/" rel="tag">ICANN58</a></p> <p class="postcontrols"> <a class="no comments" href="https://www.dnssec-deployment.org/2017/03/icann-58-list-of-dnssec-activities-march-12-15-2017/#respond">No Comments</a> </p> <div class="clear"></div> </div>   <div id="post-3186" class="post-3186 post type-post status-publish format-standard hentry category-dnssec category-icann-dnssec-workshops tag-icann tag-icann58"> <h3 class="title"><a href="https://www.dnssec-deployment.org/2016/12/call-for-participation-icann-dnssec-workshop-at-icann58-in-copenhagen/" rel="bookmark" title="Permanent Link: Call for Participation – ICANN DNSSEC Workshop at ICANN58 in Copenhagen">Call for Participation – ICANN DNSSEC Workshop at ICANN58 in Copenhagen</a></h3>  <div class="postheader"> <div class="postinfo"> <p>Posted by <a href="https://www.dnssec-deployment.org/author/york/" title="Posts by Dan York ">Dan York</a> in <a href="https://www.dnssec-deployment.org/category/dnssec/" rel="category tag">DNSSEC</a>, <a href="https://www.dnssec-deployment.org/category/icann-dnssec-workshops/" rel="category tag">ICANN DNSSEC Workshops</a> on December 12, 2016 </p> </div> </div>  <div class="postbody entry clearfix"> <p><img decoding="async" class="alignright size-full wp-image-3187" src="https://www.dnssec-deployment.org/wp-content/uploads/2016/12/icann-58.jpg" alt="ICANN 58 logo" width="135" height="144" />The DNSSEC Deployment Initiative and the <a href="https://www.internetsociety.org/deploy360/">Internet Society Deploy360 Programme</a>, in cooperation with the ICANN Security and Stability Advisory Committee (SSAC), are planning a DNSSEC Workshop during the ICANN58 meeting held from 11-16 March 2017 in Copenhagen, Denmark. The DNSSEC Workshop has been a part of ICANN meetings for several years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments. For reference, the most recent session was held at the ICANN meeting in Hyderabad, India on 07 November 2016. The presentations and transcripts are available at:<br /> <a href="https://icann572016.sched.org/event/8czs/dnssec-workshop-part-1">https://icann572016.sched.org/event/8czs/dnssec-workshop-part-1</a>,<br /> <a href="https://icann572016.sched.org/event/8czt/dnssec-workshop-part-2">https://icann572016.sched.org/event/8czt/dnssec-workshop-part-2</a>, and<br /> <a href="https://icann572016.sched.org/event/8czu/dnssec-workshop-part-3">https://icann572016.sched.org/event/8czu/dnssec-workshop-part-3</a>.</p> <p>At ICANN58 we are particularly interested in live demonstrations of uses of DNSSEC or DANE. Examples might include:</p> <ul> <li>Email clients and servers using DNSSEC, OPENPGPKEY, or S/MIME for secure email.</li> <li>Tools for automating the generation of DNSSEC/DANE records.</li> <li>Services for monitoring or managing DNSSEC signing or validation.</li> <li>Tools or services for using DNSSEC/DANE along with other existing protocols and services such as SSH, XMPP, SMTP, S/MIME or PGP/GPG.</li> <li>Innovative uses of APIs to do something new and different using DNSSEC/DANE.</li> <li>S/MIME and Microsoft Outlook integration with active directory.</li> </ul> <p>Our interest is to provide current examples of the state of development and to show real-world examples of how DNSSEC and DANE related innovation can be used to increase the overall security of the Internet.</p> <p>We are open to presentations and demonstrations related to any topic associated with DNSSEC and DANE. Examples of the types of topics we are seeking include:</p> <p><strong>1. DNSSEC activities in Europe</strong></p> <p>For this panel we are seeking participation from those who have been involved in DNSSEC deployment in Europe and also from those who have not deployed DNSSEC but who have a keen interest in the challenges and benefits of deployment. In particular, we will consider the following questions: Are you interested in reporting on DNSSEC validation of your ISPs? What can DNSSEC do for you? What doesn’t it do? What are the internal tradeoffs to implementing DNSSEC? What did you learn in your deployment of DNSSEC? We are interested in presentations from both people involved with the signing of domains and people involved with the deployment of DNSSEC-validating DNS resolvers.</p> <p><strong>2. Preparation for Root Key Rollover</strong></p> <p>In preparation for the Root Key Rollover, we would like to bring together a panel of people who can talk about what the potential impacts may be to ISPs, equipment providers and end users, and also what can be done to potentially mitigate those issues. In particular, we are seeking participation from vendors, ISPs, and the community that will be affected by distribution of new root keys. We would like to be able to offer suggestions out of this panel to the wider technical community. If you have a specific concern about the Root Key Rollover, or believe you have a method or solution to help address impacts, we would like to hear from you.</p> <p><strong>3. Implementing DNSSEC validation at Internet Service Providers (ISPs)</strong></p> <p>Internet Service Providers (ISPs) play a critical role by enabling DNSSEC validation for the caching DNS resolvers used by their customers. We have now seen massive rollouts of DNSSEC validation within large North American ISPs and at ISPs around the world. We are interested in presentations on topics such as:</p> <ul> <li>Can you describe your experiences with negative Trust Anchors and operational realities?</li> <li>What does an ISP need to do to prepare its network for implementing DNSSEC validation?</li> <li>How does an ISP need to prepare its support staff and technical staff for the rollout of DNSSEC validation?</li> <li>What measurements are available about the degree of DNSSEC validation currently deployed?</li> <li>What tools are available to help an ISP deploy DNSSEC validation?</li> <li>What are the practical server-sizing impacts of enabling DNSSEC validation on ISP DNS Resolvers (ex. cost, memory, CPU, bandwidth, technical support, etc.)?</li> </ul> <p><strong>4. The operational realities of running DNSSEC</strong></p> <p>Now that DNSSEC has become an operational norm for many registries, registrars, and ISPs, what have we learned about how we manage DNSSEC? What is the best practice around key rollovers? How often do you review your disaster recovery procedures? Is there operational familiarity within your customer support teams? What operational statistics have we gathered about DNSSEC? Are there experiences being documented in the form of best practices, or something similar, for transfer of signed zones?</p> <p><strong>5. DANE and DNSSEC application automation</strong></p> <p>For DNSSEC to reach massive deployment levels it is clear that a higher level of automation is required than is currently available. There also is strong interest for DANE usage within web transactions as well as for securing email and Voice-over-IP (VoIP). We are seeking presentations on topics such as:</p> <ul> <li>What tools, systems and services are available to help automate DNSSEC key management</li> <li>Can you provide an analysis of current tools/services and identify gaps?</li> <li>Where are the best opportunities for automation within DNSSEC signing and validation processes?</li> <li>What are the costs and benefits of different approaches to automation?</li> <li>What are some of the new and innovative uses of DANE and other DNSSEC applications in new areas or industries?</li> <li>What tools and services are now available that can support DANE usage?</li> <li>How soon could DANE and other DNSSEC applications become a deployable reality?</li> <li>How can the industry use DANE and other DNSSEC applications as a mechanism for creating a more secure Internet?</li> </ul> <p>We would be particularly interested in any live demonstrations of DNSSEC / DANE application automation and services. For example, a demonstration of the actual process of setting up a site with a certificate stored in a TLSA record that correctly validates would be welcome. Demonstrations of new tools that make the setup of DNSSEC or DANE more automated would also be welcome.</p> <p><strong>6. When unexpected DNSSEC events occur</strong></p> <p>What have we learned from some of the operational outages that we have seen over the past 18 months? Are there lessons that we can pass on to those just about to implement DNSSEC? How do you manage dissemination of information about the outage? What have you learned about communications planning? Do you have a route to ISPs and registrars? How do you liaise with your CERT community?</p> <p><strong>7. DNSSEC and DANE in the enterprise</strong></p> <p>Enterprises can play a critical role in both providing DNSSEC validation to their internal networks and also through signing of the domains owned by the enterprise. We are seeking presentations from enterprises that have implemented DNSSEC on validation and/or signing processes and can address questions such as:</p> <ul> <li>What are the benefits to enterprises of rolling out DNSSEC validation? And how do they do so?</li> <li>What are the challenges to deployment for these organizations and how could DANE and other DNSSEC applications address those challenges?</li> <li>How should an enterprise best prepare its IT staff and network to implement DNSSEC?</li> <li>What tools and systems are available to assist enterprises in the deployment of DNSSEC?</li> <li>How can the DANE protocol be used within an enterprise to bring a higher level of security to transactions using SSL/TLS certificates?</li> </ul> <p><strong>8. Hardware Security Modules (HSMs) use cases and innovation</strong></p> <p>We are interested in demonstrations of HSMs, presentations of HSM-related innovations and real world use cases of HSMs and key management.</p> <p>In addition, we welcome suggestions for additional topics.</p> <p>If you are interested in participating, please send a brief (1-2 sentence) description of your proposed presentation to <a href="/cdn-cgi/l/email-protection#7c18120f0f191f511f130c1912141d1b19123c150f131f52130e1b"><span class="__cf_email__" data-cfemail="a6c2c8d5d5c3c58bc5c9d6c3c8cec7c1c3c8e6cfd5c9c588c9d4c1">[email protected]</span></a> by <strong>15 January 2017</strong>.</p> <p>We hope that you can join us.</p> <p>Thank you,<br /> Julie Hedlund</p> <p>On behalf of the DNSSEC Workshop Program Committee:</p> <p>Jean Robert Hountomey, AfricaCERT<br /> Jacques Latour, .CA<br /> Xiaodong Lee, CNNIC<br /> Luciano Minuchin, NIC.AR<br /> Russ Mundy, Parsons<br /> Ondřej Filip, CZ.NIC<br /> Yoshiro Yoneya, JPRS<br /> Dan York, Internet Society</p> </div> <p class="tags"><a href="https://www.dnssec-deployment.org/tag/icann/" rel="tag">ICANN</a>, <a href="https://www.dnssec-deployment.org/tag/icann58/" rel="tag">ICANN58</a></p> <p class="postcontrols"> <a class="no comments" href="https://www.dnssec-deployment.org/2016/12/call-for-participation-icann-dnssec-workshop-at-icann58-in-copenhagen/#respond">No Comments</a> </p> <div class="clear"></div> </div>   <div id="post-3180" class="post-3180 post type-post status-publish format-standard hentry category-icann-dnssec-workshops tag-icann tag-icann57"> <h3 class="title"><a href="https://www.dnssec-deployment.org/2016/08/call-for-participation-dnssec-workshop-at-icann57-in-hyderabad-india/" rel="bookmark" title="Permanent Link: Call for Participation – DNSSEC Workshop at ICANN57 in Hyderabad, India">Call for Participation – DNSSEC Workshop at ICANN57 in Hyderabad, India</a></h3>  <div class="postheader"> <div class="postinfo"> <p>Posted by <a href="https://www.dnssec-deployment.org/author/york/" title="Posts by Dan York ">Dan York</a> in <a href="https://www.dnssec-deployment.org/category/icann-dnssec-workshops/" rel="category tag">ICANN DNSSEC Workshops</a> on August 29, 2016 </p> </div> </div>  <div class="postbody entry clearfix"> <p><a href="https://meetings.icann.org/en/hyderabad57"><img loading="lazy" decoding="async" class="alignright size-full wp-image-3182" src="https://www.dnssec-deployment.org/wp-content/uploads/2016/08/icann57-hyderabad.jpg" alt="ICANN 57 logo" width="160" height="179" /></a>The <a href="https://www.dnssec-deployment.org/">DNSSEC Deployment Initiative</a> and the <a href="https://www.internetsociety.org/deploy360/">Internet Society Deploy360 Programme</a>, in cooperation with the ICANN Security and Stability Advisory Committee (SSAC), are planning a DNSSEC Workshop during <a href="https://meetings.icann.org/en/hyderabad57">the ICANN57 meeting</a> held from <strong>03-09 November 2016 in Hyderabad, India</strong>. The DNSSEC Workshop has been a part of ICANN meetings for several years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments. For reference, the most recent session was held at the ICANN meeting in Helsinki, Finland on 27 June 2016. The presentations and transcripts are available at: <a href="http://sched.co/7NCj">http://sched.co/7NCj</a> and <a href="http://sched.co/7NCk">http://sched.co/7NCk</a></p> <p>At ICANN57 we are particularly interested in live demonstrations of uses of DNSSEC or DANE. Examples might include:</p> <ul> <li>Email clients and servers using DNSSEC, OPENPGPKEY, or S/MIME for secure email.</li> <li>Tools for automating the generation of DNSSEC/DANE records.</li> <li>Services for monitoring or managing DNSSEC signing or validation.</li> <li>Tools or services for using DNSSEC/DANE along with other existing protocols and<br /> services such as SSH, XMPP, SMTP, S/MIME or PGP/GPG.</li> <li>Innovative uses of APIs to do something new and different using DNSSEC/DANE.</li> <li>S/MIME and Microsoft Outlook integration with active directory.</li> </ul> <p>Our interest is to provide current examples of the state of development and to show real-world examples of how DNSSEC and DANE related innovation can be used to increase the overall security of the Internet.</p> <p>If you are interested in participating, please send a brief (1-2 sentence) description of your proposed presentation to <a href="/cdn-cgi/l/email-protection#771319040412145a1f0e13120516151613371e04181459180510"><span class="__cf_email__" data-cfemail="89ede7fafaeceaa4e1f0edecfbe8ebe8edc9e0fae6eaa7e6fbee">[email protected]</span></a> by **<strong>15 September 2016</strong>**.</p> <p>We are open to presentations and demonstrations related to any topic associated with DNSSEC and DANE. Examples of the types of topics we are seeking include:</p> <h3>1. DNSSEC activities in Asia</h3> <p>For this panel we are seeking participation from those who have been involved in DNSSEC deployment in Asia and also from those who have not deployed DNSSEC but who have a keen interest in the challenges and benefits of deployment. In particular, we will consider the following questions: Are you interested in reporting on DNSSEC validation of your ISPs? What can DNSSEC do for you? What doesn’t it do? What are the internal tradeoffs to implementing DNSSEC? What did you learn in your deployment of DNSSEC? We are interested in presentations from both people involved with the signing of domains and people involved with the deployment of DNSSEC-validating DNS resolvers.</p> <h3>2. Preparation for Root Key Rollover</h3> <p>In preparation for the Root Key Rollover, we would like to bring together a panel of people who can talk about what the potential impacts may be to ISPs, equipment providers and end users, and also what can be done to potentially mitigate those issues. In particular, we are seeking participation from vendors, ISPs, and the community that will be affected by distribution of new root keys. We would like to be able to offer suggestions out of this panel to the wider technical community. If you have a specific concern about the Root Key Rollover, or believe you have a method or solution to help address impacts, we would like to hear from you.</p> <h3>3. Implementing DNSSEC validation at Internet Service Providers (ISPs)</h3> <p>Internet Service Providers (ISPs) play a critical role by enabling DNSSEC validation for the caching DNS resolvers used by their customers. We have now seen massive rollouts of DNSSEC validation within large North American ISPs and at ISPs around the world. We are interested in presentations on topics such as:</p> <ul> <li>Can you describe your experiences with negative Trust Anchors and operational realities?</li> <li>What does an ISP need to do to prepare its network for implementing DNSSEC validation?</li> <li>How does an ISP need to prepare its support staff and technical staff for the rollout of DNSSEC validation?</li> <li>What measurements are available about the degree of DNSSEC validation currently deployed?</li> <li>What tools are available to help an ISP deploy DNSSEC validation?</li> <li>What are the practical server-sizing impacts of enabling DNSSEC validation on ISP DNS Resolvers (ex. cost, memory, CPU, bandwidth, technical support, etc.)?</li> </ul> <h3>4. The operational realities of running DNSSEC</h3> <p>Now that DNSSEC has become an operational norm for many registries, registrars, and ISPs, what have we learned about how we manage DNSSEC? What is the best practice around key rollovers? How often do you review your disaster recovery procedures? Is there operational familiarity within your customer support teams? What operational statistics have we gathered about DNSSEC? Are there experiences being documented in the form of best practices, or something similar, for transfer of signed zones?</p> <h3>5. DANE and DNSSEC application automation</h3> <p>For DNSSEC to reach massive deployment levels it is clear that a higher level of automation is required than is currently available. There also is strong interest for DANE usage within web transactions as well as for securing email and Voice-over-IP (VoIP). We are seeking presentations on topics such as:</p> <ul> <li>What tools, systems and services are available to help automate DNSSEC key management?</li> <li>Can you provide an analysis of current tools/services and identify gaps?</li> <li>Where are the best opportunities for automation within DNSSEC signing and validation processes?</li> <li>What are the costs and benefits of different approaches to automation?</li> <li>What are some of the new and innovative uses of DANE and other DNSSEC applications in new areas or industries?</li> <li>What tools and services are now available that can support DANE usage?</li> <li>How soon could DANE and other DNSSEC applications become a deployable reality?</li> <li>How can the industry use DANE and other DNSSEC applications as a mechanism for creating a more secure Internet?</li> </ul> <p>We would be particularly interested in any live demonstrations of DNSSEC / DANE application automation and services. For example, a demonstration of the actual process of setting up a site with a certificate stored in a TLSA record that correctly validates would be welcome. Demonstrations of new tools that make the setup of DNSSEC or DANE more automated would also be welcome.</p> <h3>6. When unexpected DNSSEC events occur</h3> <p>What have we learned from some of the operational outages that we have seen over the past 18 months? Are there lessons that we can pass on to those just about to implement DNSSEC? How do you manage dissemination of information about the outage? What have you learned about communications planning? Do you have a route to ISPs and registrars? How do you liaise with your CERT community?</p> <h3>7. DNSSEC and DANE in the enterprise</h3> <p>Enterprises can play a critical role in both providing DNSSEC validation to their internal networks and also through signing of the domains owned by the enterprise. We are seeking presentations from enterprises that have implemented DNSSEC on validation and/or signing processes and can address questions such as:</p> <ul> <li>What are the benefits to enterprises of rolling out DNSSEC validation? And how do they do so?</li> <li>What are the challenges to deployment for these organizations and how could DANE and other DNSSEC applications address those challenges?</li> <li>How should an enterprise best prepare its IT staff and network to implement DNSSEC?</li> <li>What tools and systems are available to assist enterprises in the deployment of DNSSEC?</li> <li>How can the DANE protocol be used within an enterprise to bring a higher level of security to transactions using SSL/TLS certificates?</li> </ul> <h3>8. Hardware Security Modules (HSMs) use cases and innovation</h3> <p>We are interested in demonstrations of HSMs, presentations of HSM-related innovations and real world use cases of HSMs and key management.</p> <p>In addition, we welcome suggestions for additional topics.</p> <p>If you are interested in participating, please send a brief (1-2 sentence) description of your proposed presentation to <a href="/cdn-cgi/l/email-protection#71151f020214125c1908151403101310153118021e125f1e0316"><span class="__cf_email__" data-cfemail="20444e535345430d4859444552414241446049534f430e4f5247">[email protected]</span></a> by **<strong>15 September 2016</strong>**.</p> <p>We hope that you can join us.</p> <p>Thank you,</p> <p>Julie Hedlund</p> <p>On behalf of the DNSSEC Workshop Program Committee:<br /> Mark Elkins, DNS/ZACR<br /> Cath Goulding, Nominet UK<br /> Jean Robert Hountomey, AfricaCERT<br /> Jacques Latour, .CA<br /> Xiaodong Lee, CNNIC<br /> Luciano Minuchin, NIC.AR<br /> Russ Mundy, Parsons<br /> Ondřej Surý, CZ.NIC<br /> Yoshiro Yoneya, JPRS<br /> Dan York, Internet Society</p> </div> <p class="tags"><a href="https://www.dnssec-deployment.org/tag/icann/" rel="tag">ICANN</a>, <a href="https://www.dnssec-deployment.org/tag/icann57/" rel="tag">ICANN57</a></p> <p class="postcontrols"> <a class="no comments" href="https://www.dnssec-deployment.org/2016/08/call-for-participation-dnssec-workshop-at-icann57-in-hyderabad-india/#respond">No Comments</a> </p> <div class="clear"></div> </div>  <div class="navigation" id="pagenavi"> <div class="alignleft"><a href="https://www.dnssec-deployment.org/page/2/" >« Older Entries</a></div> <div class="alignright"></div> <div class="clear"></div> </div> </div>  </div>   <div id="sidebar">  <div id="sidebar-wrap1">  <div id="sidebar-wrap2"> <ul id="sidelist"> <li><div id="text-3" class="widget widget_text"><h2 class="title">Sponsored By</h2> <div class="textwidget"><p style="text-align:center;"><a href="http://www.internetsociety.org/deploy360/"><img src="/wp-content/uploads/2019/06/isoc-logo-150x75.png"><br> Deploy360 Programme</a></p></div> </div></li><li><div id="text-2" class="widget widget_text"><h2 class="title">Links</h2> <div class="textwidget"><ul> <li><a href="http://www.internetsociety.org/deploy360/dnssec/">Deploy360 DNSSEC</a> <li><a href="http://www.dnssec-tools.org/">DNSSEC Tools Project</a> <li><a href="http://www.internetsociety.org/deploy360/resources/DANE/">DANE Info</a> </ul></div> </div></li><li><div id="wgs_widget-2" class="widget widget_wgs_widget"><h2 class="title">Search</h2><div class="wgs_wrapper"><div class="gcse-searchbox-only" data-resultsUrl="https://www.dnssec-deployment.org/?page_id=3289&preview_id=3289"></div></div></div></li> <li><div id="recent-posts-2" class="widget widget_recent_entries"> <h2 class="title">Recent Posts</h2> <ul> <li> <a href="https://www.dnssec-deployment.org/2020/05/call-for-participation-icann-dnssec-and-security-workshop-at-icann68-virtual-policy-forum-in-june-2020/">Call for Participation — ICANN DNSSEC and Security Workshop at ICANN68 Virtual Policy Forum in June 2020</a> </li> <li> <a href="https://www.dnssec-deployment.org/2020/01/call-for-participation-icann-dnssec-and-security-workshop-at-icann67-in-march-2020-in-cancun-mexico/">Call for Participation — ICANN DNSSEC and Security Workshop at ICANN67 in March 2020 in Cancun, Mexico</a> </li> <li> <a href="https://www.dnssec-deployment.org/2019/11/slides-and-video-available-for-icann-66-dnssec-workshop/">Slides and video available for ICANN 66 DNSSEC Workshop</a> </li> <li> <a href="https://www.dnssec-deployment.org/2019/09/call-for-participation-icann-dnssec-and-security-workshop-at-icann66-montreal-canada/">Call for Participation – ICANN DNSSEC and Security Workshop at ICANN66, Montreal, Canada</a> </li> <li> <a href="https://www.dnssec-deployment.org/2019/05/call-for-participation-dnssec-workshop-at-icann65-marrakech-morocco/">Call for Participation – DNSSEC Workshop at ICANN65, Marrakech, Morocco</a> </li> </ul> </div></li><li><div id="archives-2" class="widget widget_archive"><h2 class="title">Archives</h2> <label class="screen-reader-text" for="archives-dropdown-2">Archives</label> <select id="archives-dropdown-2" name="archive-dropdown"> <option value="">Select Month</option> <option value='https://www.dnssec-deployment.org/2020/05/'> May 2020  (1)</option> <option value='https://www.dnssec-deployment.org/2020/01/'> January 2020  (1)</option> <option value='https://www.dnssec-deployment.org/2019/11/'> November 2019  (1)</option> <option value='https://www.dnssec-deployment.org/2019/09/'> September 2019  (1)</option> <option value='https://www.dnssec-deployment.org/2019/05/'> May 2019  (1)</option> <option value='https://www.dnssec-deployment.org/2019/01/'> January 2019  (1)</option> <option value='https://www.dnssec-deployment.org/2017/05/'> May 2017  (1)</option> <option value='https://www.dnssec-deployment.org/2017/03/'> March 2017  (1)</option> <option value='https://www.dnssec-deployment.org/2016/12/'> December 2016  (1)</option> <option value='https://www.dnssec-deployment.org/2016/08/'> August 2016  (1)</option> <option value='https://www.dnssec-deployment.org/2016/06/'> June 2016  (1)</option> <option value='https://www.dnssec-deployment.org/2016/04/'> April 2016  (1)</option> <option value='https://www.dnssec-deployment.org/2016/03/'> March 2016  (1)</option> <option value='https://www.dnssec-deployment.org/2016/01/'> January 2016  (1)</option> <option value='https://www.dnssec-deployment.org/2015/11/'> November 2015  (1)</option> <option value='https://www.dnssec-deployment.org/2015/10/'> October 2015  (2)</option> <option value='https://www.dnssec-deployment.org/2015/07/'> July 2015  (1)</option> <option value='https://www.dnssec-deployment.org/2015/06/'> June 2015  (1)</option> <option value='https://www.dnssec-deployment.org/2015/03/'> March 2015  (1)</option> <option value='https://www.dnssec-deployment.org/2015/02/'> February 2015  (1)</option> <option value='https://www.dnssec-deployment.org/2015/01/'> January 2015  (1)</option> <option value='https://www.dnssec-deployment.org/2014/12/'> December 2014  (1)</option> <option value='https://www.dnssec-deployment.org/2014/11/'> November 2014  (1)</option> <option value='https://www.dnssec-deployment.org/2014/10/'> October 2014  (1)</option> <option value='https://www.dnssec-deployment.org/2014/09/'> September 2014  (1)</option> <option value='https://www.dnssec-deployment.org/2014/08/'> August 2014  (1)</option> <option value='https://www.dnssec-deployment.org/2014/07/'> July 2014  (2)</option> <option value='https://www.dnssec-deployment.org/2013/09/'> September 2013  (1)</option> <option value='https://www.dnssec-deployment.org/2013/07/'> July 2013  (1)</option> <option value='https://www.dnssec-deployment.org/2013/06/'> June 2013  (1)</option> <option value='https://www.dnssec-deployment.org/2013/04/'> April 2013  (1)</option> <option value='https://www.dnssec-deployment.org/2013/03/'> March 2013  (3)</option> <option value='https://www.dnssec-deployment.org/2013/02/'> February 2013  (2)</option> <option value='https://www.dnssec-deployment.org/2012/12/'> December 2012  (1)</option> <option value='https://www.dnssec-deployment.org/2012/07/'> July 2012  (7)</option> <option value='https://www.dnssec-deployment.org/2012/06/'> June 2012  (9)</option> <option value='https://www.dnssec-deployment.org/2012/05/'> May 2012  (4)</option> <option value='https://www.dnssec-deployment.org/2012/04/'> April 2012  (5)</option> <option value='https://www.dnssec-deployment.org/2012/03/'> March 2012  (11)</option> <option value='https://www.dnssec-deployment.org/2012/02/'> February 2012  (5)</option> <option value='https://www.dnssec-deployment.org/2012/01/'> January 2012  (7)</option> <option value='https://www.dnssec-deployment.org/2011/12/'> December 2011  (4)</option> <option value='https://www.dnssec-deployment.org/2011/11/'> November 2011  (6)</option> <option value='https://www.dnssec-deployment.org/2011/10/'> October 2011  (6)</option> <option value='https://www.dnssec-deployment.org/2011/09/'> September 2011  (4)</option> <option value='https://www.dnssec-deployment.org/2011/08/'> August 2011  (2)</option> <option value='https://www.dnssec-deployment.org/2011/07/'> July 2011  (5)</option> <option value='https://www.dnssec-deployment.org/2011/06/'> June 2011  (3)</option> <option value='https://www.dnssec-deployment.org/2011/05/'> May 2011  (1)</option> <option value='https://www.dnssec-deployment.org/2011/04/'> April 2011  (1)</option> <option value='https://www.dnssec-deployment.org/2011/03/'> March 2011  (3)</option> <option value='https://www.dnssec-deployment.org/2011/02/'> February 2011  (5)</option> <option value='https://www.dnssec-deployment.org/2011/01/'> January 2011  (6)</option> <option value='https://www.dnssec-deployment.org/2010/12/'> December 2010  (6)</option> <option value='https://www.dnssec-deployment.org/2010/11/'> November 2010  (6)</option> <option value='https://www.dnssec-deployment.org/2010/10/'> October 2010  (13)</option> <option value='https://www.dnssec-deployment.org/2010/09/'> September 2010  (7)</option> <option value='https://www.dnssec-deployment.org/2010/08/'> August 2010  (13)</option> <option value='https://www.dnssec-deployment.org/2010/07/'> July 2010  (7)</option> <option value='https://www.dnssec-deployment.org/2010/06/'> June 2010  (22)</option> <option value='https://www.dnssec-deployment.org/2010/05/'> May 2010  (4)</option> <option value='https://www.dnssec-deployment.org/2010/04/'> April 2010  (7)</option> <option value='https://www.dnssec-deployment.org/2010/03/'> March 2010  (15)</option> <option value='https://www.dnssec-deployment.org/2010/02/'> February 2010  (9)</option> <option value='https://www.dnssec-deployment.org/2010/01/'> January 2010  (27)</option> <option value='https://www.dnssec-deployment.org/2009/12/'> December 2009  (8)</option> </select> <script data-cfasync="false" src="/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js"></script><script type="text/javascript"> /* <![CDATA[ */ (function() { var dropdown = document.getElementById( "archives-dropdown-2" ); function onSelectChange() { if ( dropdown.options[ dropdown.selectedIndex ].value !== '' ) { document.location.href = this.options[ this.selectedIndex ].value; } } dropdown.onchange = onSelectChange; })(); /* ]]> */ </script> </div></li><li><div id="categories-2" class="widget widget_categories"><h2 class="title">Categories</h2> <ul> <li class="cat-item cat-item-169"><a href="https://www.dnssec-deployment.org/category/about-the-dnssec-deployment-initiative/">About The DNSSEC Deployment Initiative</a> </li> <li class="cat-item cat-item-85"><a href="https://www.dnssec-deployment.org/category/adoption/">Adoption</a> </li> <li class="cat-item cat-item-86"><a href="https://www.dnssec-deployment.org/category/case-studies/">Case Studies</a> </li> <li class="cat-item cat-item-87"><a href="https://www.dnssec-deployment.org/category/dnssec/">DNSSEC</a> </li> <li class="cat-item cat-item-164"><a href="https://www.dnssec-deployment.org/category/dnssec-deployment-maps/">DNSSEC Deployment Maps</a> </li> <li class="cat-item cat-item-166"><a href="https://www.dnssec-deployment.org/category/icann-dnssec-workshops/">ICANN DNSSEC Workshops</a> </li> <li class="cat-item cat-item-88"><a href="https://www.dnssec-deployment.org/category/meetings-and-workshops/">Meetings and Workshops</a> </li> <li class="cat-item cat-item-89"><a href="https://www.dnssec-deployment.org/category/news/">News</a> </li> <li class="cat-item cat-item-90"><a href="https://www.dnssec-deployment.org/category/policy/">Policy</a> </li> <li class="cat-item cat-item-91"><a href="https://www.dnssec-deployment.org/category/technical-guides/">Technical guides</a> </li> <li class="cat-item cat-item-176"><a href="https://www.dnssec-deployment.org/category/tools/">Tools</a> </li> <li class="cat-item cat-item-1"><a href="https://www.dnssec-deployment.org/category/uncategorized/">Uncategorized</a> </li> </ul> </div></li><li><div id="tag_cloud-2" class="widget widget_tag_cloud"><h2 class="title">Tags</h2><div class="tagcloud"><a href="https://www.dnssec-deployment.org/tag/biz/" class="tag-cloud-link tag-link-92 tag-link-position-1" style="font-size: 8pt;" aria-label=".BIZ (1 item)">.BIZ</a> <a href="https://www.dnssec-deployment.org/tag/org/" class="tag-cloud-link tag-link-93 tag-link-position-2" style="font-size: 10.191304347826pt;" aria-label=".org (2 items)">.org</a> <a href="https://www.dnssec-deployment.org/tag/us/" class="tag-cloud-link tag-link-95 tag-link-position-3" style="font-size: 10.191304347826pt;" aria-label=".us (2 items)">.us</a> <a href="https://www.dnssec-deployment.org/tag/adoption/" class="tag-cloud-link tag-link-201 tag-link-position-4" style="font-size: 17.860869565217pt;" aria-label="Adoption (12 items)">Adoption</a> <a href="https://www.dnssec-deployment.org/tag/applications/" class="tag-cloud-link tag-link-99 tag-link-position-5" style="font-size: 10.191304347826pt;" aria-label="Applications (2 items)">Applications</a> <a href="https://www.dnssec-deployment.org/tag/cctlds/" class="tag-cloud-link tag-link-102 tag-link-position-6" style="font-size: 15.913043478261pt;" aria-label="CCTLDs (8 items)">CCTLDs</a> <a href="https://www.dnssec-deployment.org/tag/deployment-progress/" class="tag-cloud-link tag-link-105 tag-link-position-7" style="font-size: 13.84347826087pt;" aria-label="deployment progress (5 items)">deployment progress</a> <a href="https://www.dnssec-deployment.org/tag/dnssec/" class="tag-cloud-link tag-link-202 tag-link-position-8" style="font-size: 19.321739130435pt;" aria-label="DNSSEC (16 items)">DNSSEC</a> <a href="https://www.dnssec-deployment.org/tag/dnssec-coord/" class="tag-cloud-link tag-link-195 tag-link-position-9" style="font-size: 8pt;" aria-label="DNSSEC-coord (1 item)">DNSSEC-coord</a> <a href="https://www.dnssec-deployment.org/tag/doc/" class="tag-cloud-link tag-link-112 tag-link-position-10" style="font-size: 10.191304347826pt;" aria-label="DOC (2 items)">DOC</a> <a href="https://www.dnssec-deployment.org/tag/dot-edu/" class="tag-cloud-link tag-link-114 tag-link-position-11" style="font-size: 10.191304347826pt;" aria-label="Dot-EDU (2 items)">Dot-EDU</a> <a href="https://www.dnssec-deployment.org/tag/dot-gov/" class="tag-cloud-link tag-link-115 tag-link-position-12" style="font-size: 12.869565217391pt;" aria-label="dot-gov (4 items)">dot-gov</a> <a href="https://www.dnssec-deployment.org/tag/dot-nl/" class="tag-cloud-link tag-link-116 tag-link-position-13" style="font-size: 10.191304347826pt;" aria-label="Dot-NL (2 items)">Dot-NL</a> <a href="https://www.dnssec-deployment.org/tag/dot-se/" class="tag-cloud-link tag-link-118 tag-link-position-14" style="font-size: 10.191304347826pt;" aria-label="dot-SE (2 items)">dot-SE</a> <a href="https://www.dnssec-deployment.org/tag/dot-us/" class="tag-cloud-link tag-link-121 tag-link-position-15" style="font-size: 10.191304347826pt;" aria-label="Dot-US (2 items)">Dot-US</a> <a href="https://www.dnssec-deployment.org/tag/educause/" class="tag-cloud-link tag-link-124 tag-link-position-16" style="font-size: 11.652173913043pt;" aria-label="EDUCAUSE (3 items)">EDUCAUSE</a> <a href="https://www.dnssec-deployment.org/tag/fose/" class="tag-cloud-link tag-link-127 tag-link-position-17" style="font-size: 11.652173913043pt;" aria-label="FOSE (3 items)">FOSE</a> <a href="https://www.dnssec-deployment.org/tag/icann/" class="tag-cloud-link tag-link-133 tag-link-position-18" style="font-size: 22pt;" aria-label="ICANN (27 items)">ICANN</a> <a href="https://www.dnssec-deployment.org/tag/icann46/" class="tag-cloud-link tag-link-168 tag-link-position-19" style="font-size: 8pt;" aria-label="ICANN46 (1 item)">ICANN46</a> <a href="https://www.dnssec-deployment.org/tag/icann47/" class="tag-cloud-link tag-link-167 tag-link-position-20" style="font-size: 8pt;" aria-label="ICANN47 (1 item)">ICANN47</a> <a href="https://www.dnssec-deployment.org/tag/icann51/" class="tag-cloud-link tag-link-179 tag-link-position-21" style="font-size: 8pt;" aria-label="ICANN51 (1 item)">ICANN51</a> <a href="https://www.dnssec-deployment.org/tag/icann52/" class="tag-cloud-link tag-link-196 tag-link-position-22" style="font-size: 12.869565217391pt;" aria-label="ICANN52 (4 items)">ICANN52</a> <a href="https://www.dnssec-deployment.org/tag/icann53/" class="tag-cloud-link tag-link-197 tag-link-position-23" style="font-size: 10.191304347826pt;" aria-label="ICANN53 (2 items)">ICANN53</a> <a href="https://www.dnssec-deployment.org/tag/icann54/" class="tag-cloud-link tag-link-199 tag-link-position-24" style="font-size: 11.652173913043pt;" aria-label="ICANN54 (3 items)">ICANN54</a> <a href="https://www.dnssec-deployment.org/tag/icann55/" class="tag-cloud-link tag-link-204 tag-link-position-25" style="font-size: 8pt;" aria-label="ICANN55 (1 item)">ICANN55</a> <a href="https://www.dnssec-deployment.org/tag/icann56/" class="tag-cloud-link tag-link-205 tag-link-position-26" style="font-size: 10.191304347826pt;" aria-label="ICANN56 (2 items)">ICANN56</a> <a href="https://www.dnssec-deployment.org/tag/icann57/" class="tag-cloud-link tag-link-206 tag-link-position-27" style="font-size: 8pt;" aria-label="ICANN57 (1 item)">ICANN57</a> <a href="https://www.dnssec-deployment.org/tag/icann58/" class="tag-cloud-link tag-link-207 tag-link-position-28" style="font-size: 10.191304347826pt;" aria-label="ICANN58 (2 items)">ICANN58</a> <a href="https://www.dnssec-deployment.org/tag/icann59/" class="tag-cloud-link tag-link-208 tag-link-position-29" style="font-size: 8pt;" aria-label="ICANN59 (1 item)">ICANN59</a> <a href="https://www.dnssec-deployment.org/tag/ietf/" class="tag-cloud-link tag-link-134 tag-link-position-30" style="font-size: 10.191304347826pt;" aria-label="IETF (2 items)">IETF</a> <a href="https://www.dnssec-deployment.org/tag/infoblox/" class="tag-cloud-link tag-link-135 tag-link-position-31" style="font-size: 10.191304347826pt;" aria-label="Infoblox (2 items)">Infoblox</a> <a href="https://www.dnssec-deployment.org/tag/maps/" class="tag-cloud-link tag-link-165 tag-link-position-32" style="font-size: 14.695652173913pt;" aria-label="maps (6 items)">maps</a> <a href="https://www.dnssec-deployment.org/tag/neustar/" class="tag-cloud-link tag-link-145 tag-link-position-33" style="font-size: 11.652173913043pt;" aria-label="Neustar (3 items)">Neustar</a> <a href="https://www.dnssec-deployment.org/tag/pir/" class="tag-cloud-link tag-link-152 tag-link-position-34" style="font-size: 11.652173913043pt;" aria-label="PIR (3 items)">PIR</a> <a href="https://www.dnssec-deployment.org/tag/ripe/" class="tag-cloud-link tag-link-153 tag-link-position-35" style="font-size: 8pt;" aria-label="Ripe (1 item)">Ripe</a> <a href="https://www.dnssec-deployment.org/tag/roadmap/" class="tag-cloud-link tag-link-170 tag-link-position-36" style="font-size: 8pt;" aria-label="Roadmap (1 item)">Roadmap</a> <a href="https://www.dnssec-deployment.org/tag/root/" class="tag-cloud-link tag-link-154 tag-link-position-37" style="font-size: 10.191304347826pt;" aria-label="Root (2 items)">Root</a> <a href="https://www.dnssec-deployment.org/tag/root-zone/" class="tag-cloud-link tag-link-155 tag-link-position-38" style="font-size: 11.652173913043pt;" aria-label="Root zone (3 items)">Root zone</a> <a href="https://www.dnssec-deployment.org/tag/sidn/" class="tag-cloud-link tag-link-156 tag-link-position-39" style="font-size: 11.652173913043pt;" aria-label="SIDN (3 items)">SIDN</a> <a href="https://www.dnssec-deployment.org/tag/state-government/" class="tag-cloud-link tag-link-158 tag-link-position-40" style="font-size: 10.191304347826pt;" aria-label="State Government (2 items)">State Government</a> <a href="https://www.dnssec-deployment.org/tag/tld/" class="tag-cloud-link tag-link-160 tag-link-position-41" style="font-size: 11.652173913043pt;" aria-label="TLD (3 items)">TLD</a> <a href="https://www.dnssec-deployment.org/tag/udp-fragments/" class="tag-cloud-link tag-link-161 tag-link-position-42" style="font-size: 8pt;" aria-label="UDP Fragments (1 item)">UDP Fragments</a> <a href="https://www.dnssec-deployment.org/tag/verisign/" class="tag-cloud-link tag-link-162 tag-link-position-43" style="font-size: 10.191304347826pt;" aria-label="Verisign (2 items)">Verisign</a> <a href="https://www.dnssec-deployment.org/tag/workshop/" class="tag-cloud-link tag-link-163 tag-link-position-44" style="font-size: 8pt;" aria-label="workshop (1 item)">workshop</a> <a href="https://www.dnssec-deployment.org/tag/yadifa/" class="tag-cloud-link tag-link-177 tag-link-position-45" style="font-size: 8pt;" aria-label="YADIFA (1 item)">YADIFA</a></div> </div></li><li><div id="recent-comments-2" class="widget widget_recent_comments"><h2 class="title">Recent Comments</h2><ul id="recentcomments"><li class="recentcomments"><span class="comment-author-link"><a href="https://www.colmena.biz/las_abejas/" class="url" rel="ugc external nofollow">justina colmena</a></span> on <a href="https://www.dnssec-deployment.org/2010/06/dnssec-deployed-in-us-biz-shortly-to-follow-neustar-says/#comment-177929">DNSSEC deployed in .US; .BIZ shortly to follow, Neustar says</a></li><li class="recentcomments"><span class="comment-author-link">Dan York</span> on <a href="https://www.dnssec-deployment.org/2010/06/dnssec-deployed-in-us-biz-shortly-to-follow-neustar-says/#comment-177925">DNSSEC deployed in .US; .BIZ shortly to follow, Neustar says</a></li><li class="recentcomments"><span class="comment-author-link">Justina Colmena</span> on <a href="https://www.dnssec-deployment.org/2010/06/dnssec-deployed-in-us-biz-shortly-to-follow-neustar-says/#comment-160450">DNSSEC deployed in .US; .BIZ shortly to follow, Neustar says</a></li><li class="recentcomments"><span class="comment-author-link">Richard Cranium</span> on <a href="https://www.dnssec-deployment.org/2012/03/is-a-70-router-fast-enough-for-dnssec/#comment-151149">Is a $70 router fast enough for DNSSEC?</a></li><li class="recentcomments"><span class="comment-author-link">Viktor Dukhovni</span> on <a href="https://www.dnssec-deployment.org/2012/03/dnssec-in-higher-education-1-isnt-enough/#comment-149700">DNSSEC in Higher Education — 1% isn’t enough</a></li></ul></div></li> </ul> </div>  </div>  </div>  </div>  </div>  </div>   <div class="clearcontent"></div>   <div id="footer"> <div class="add-content"> Web site sponsored by the <a href="https://www.internetsociety.org/deploy360/">Internet Society Deploy360 Programme</a>.<br><br> <a href="https://www.dnssec-deployment.org/privacy-policy/">Privacy Policy</a><br><br> </div>  <p> Fusion theme by <a href="http://digitalnature.ro/projects/fusion">digitalnature</a> | powered by <a href="http://wordpress.org/">WordPress</a> <br /> <a class="rss" href="https://www.dnssec-deployment.org/feed/">Entries (RSS)</a> and <a href="https://www.dnssec-deployment.org/comments/feed/">Comments (RSS)</a> <a href="javascript:void(0);" id="toplink">^</a>  </p> </div>  <div id="layoutcontrol"> <a href="javascript:void(0);" class="setFont" title="Increase/Decrease text size"><span>SetTextSize</span></a> <a href="javascript:void(0);" class="setLiquid" title="Switch between full and fixed width"><span>SetPageWidth</span></a> </div> </div>  </div> </div>    <script type="text/javascript" id="google_cse_v2-js-extra"> /* <![CDATA[ */ var scriptParams = {"google_search_engine_id":"018205985924631622767:hjgnfywp3b4"}; /* ]]> */ </script> <script type="text/javascript" src="http://www.dnssec-deployment.org/wp-content/plugins/wp-google-search/assets/js/google_cse_v2.js?ver=1" id="google_cse_v2-js"></script> </body> </html>