COMSATS Internet Services demonstrates commitment to a secure internet by implementing DNSSEC in Pakistan
COMSATS Internet Services (CIS) has announced the successful implementation of Domain Name System Security Extensions (DNSSEC) in Pakistan. This initiative, along with the recent deployment of L-Root servers in Islamabad and Lahore,and the launch of a RIPE Atlas Anchor (sponsored by APNIC), is the result of CIS’ research and development activities to help improve the experience of Internet users regionally and globally.
The Domain Name System is the backbone of the modern Internet and DNSSEC is a valued tool that supports the integrity of the DNS. The adoption of DNSSEC around the world is increasing rapidly because it has become fundamental to the development of a safe and reliable Internet.
“DNSSEC will bring new prospects and opportunities to Internet users,” said CIS Chief Executive Officer Amir Malik. “CIS is very keen to work with the Internet community to ensure the success of DNSSEC broadly. By implementing DNSSEC, we hope to strengthen users’ trust by helping to protect their websites from cyber attacks.New service offerings, such as zone signing, can be generated and it will help us initiate secure data transactions. We expect these additional features to be attractive to security and reputation focused users.”
The Domain Name System holds a pivotal position in the Internet’s infrastructure and it has been the target of a variety of cyber attacks since its inception, including having been embedded with malicious software and redirecting users to fraudulent websites. Protecting this infrastructure became mandatory to ensuring it functions properly. DNSSEC technology benefits security aware servers, as it ensures them that information obtained from another server is secure and authentic. Essentially, DNSSEC protects data by utilizing a digital signature. To guarantee the authenticity of DNS records, DNSSEC uses public key cryptography signatures.
“ICANN applauds CIS’ implementation of DNSSEC in Pakistan,” said Baher Esmat, ICANN’s Vice President, Stakeholder Engagement – Middle East,“Internet Service Providers and Enterprises who have not yet implemented DNSSEC are encouraged to follow suit and play a role in strengthening the security and reliability of the Internet.”
DNSSEC must be deployed at each step in the lookup from root zone to final domain name (e.g., www.yourwebsite.example) in order to eliminate vulnerability from the Internet. Full deployment of DNSSEC will ensure the end user is connecting to the actual website or other service corresponding to a particular domain name.