Good Morning, This email is to advise members of NZNOG of a consultation being undertaken that you, or your organisation, may be interested in commenting on. Apologies if you have already received a similar email via another mailing list. .nz is preparing to introduce the Domain Name System Security Extensions (DNSSEC) to strengthen the security and reputation of the .nz domain name space. Vulnerabilities exist in the Domain Name System (DNS) that allow miscreants to re-direct, intercept, or modify users’ Internet traffic, each with potentially devastating consequences. DNSSEC has been developed to add to the security features of the DNS, and to mitigate those vulnerabilities. Attached are the consultation paper and a background paper that explains DNSSEC in more detail and why we are implementing it. The consultation paper does not go into detail about process or how DNSSEC will be implemented at a technical or operational level but rather has a number of proposals relating to how we are planning to have DNSSEC operate within .nz policy. The papers can also be found here: http://dnc.org.nz/story/consultation-dnssec-implementation http://dnc.org.nz/content/DNSSEC_Background_Paper.pdf All comments received in this initial consultation will be considered, and draft changes to the .nz policies developed. There will then be a subsequent consultation on those proposed amendments to the .nz policies related to the DNSSEC implementation. Comments on the consultation paper should be sent to info(a)dnc.org.nz by midday 11 October 2010. If you have any questions about this please do not hesitate to contact me. Regards, Paul. Paul McKitrick (ITCP) Manager Compliance and Security Domain Name Commission Email: mcs(a)dnc.org.nz Fax: +64 4 495 2115 PO Box 11-881, Wellington, 6142 New Zealand