“Retrieve Key from Name Server” attempt to get the relevant information from the name server itself and load the keys into the Registry database. “Update Key Status” allows you to change the status of the key from “Unpublished” to “Published” (where the in-between state is “Pending Publish”) and changing from […]
Is my email also protected when I add DNSSEC for my domain names?
Because DNSSEC protects your domains and websites at the DNS network layer, your emails are also protected from DNS spoofing and DNS hijacking.
I already use SSL for my website, do I still need DNSSEC?
Yes. SSL only encrypts transactions and communication from the customer to your website. But the DNS underneath can still get hijacked. Only adding DNSSEC to your domains can ensure that your customers don’t get their DNS spoofed once they click to come to your website.
How much does it cost to add DNSSEC for my domain names?
Presently, MYNIC does not charge customers that sign their .my domain names with DNSSEC. However, please check our website for future developments on the issue of costs.
There are so many abbreviations in DNSSEC. What do they mean?
Here is a brief list of glossary for DNSSEC: DNSKEY – Domain Name System Key DNSSEC – Domain Name System Security Extensions RRSIG – Resource Record Signature IP – Internet Protocol IPv4 – Internet Protocol version 4 IPv6 – Internet Protocol version 6 KSK – Key Signing Key NSEC – […]
Is there any booklet or guideline that I could refer to enable my DNSSEC?
Yes, please click here to download the soft copy of the booklet.
What is DNSSEC?
Domain Name Security Extensions (DNSSEC) is an upgrade to the security of the Internet. Conforming to international specifications set by the Internet Engineering Task Force (IETF), it is designed to add security by protecting you against attacks such as cache poisoning. DNSSEC is one way to prevent pharming. All answers […]
What are digital signatures?
Digital signatures provide the mechanism for cryptographic authentication in DNSSEC. A digital signature proves that the message originated from a certain source and that the message has not been changed. Just as a written signature is inextricably attached to a written document, a digital signature is inextricably attached to digital […]
Why do we need DNSSEC?
The DNS works on a concept of “implied trust”. When you click on a website link, your computer will take you to whatever first reply it receives, and does not check whether it is getting reliable information on where to go on the Internet. This insecure system is used not […]
How does DNSSEC work?
DNSSEC adds a signature to each and every DNS query and response on the Internet. When you sign your domain name with DNSSEC, each piece of your domain name’s DNS information adds a digital signature. When your customer types in your website address, or clicks on a link, a security-aware […]