Hi All, I thought that this community may be interested in attending a talk this week on DNSSEC. What: Wellington ISIG Chapter Monthly Meeting (http://isig.org.nz/) Where: Confidential Bar, 65 The Terrace, Wellington (http://bit.ly/9iOvYS - the entrance is a standalone doorway opening to stairs leading down) When: 6pm Thursday 29 April 2010 Bio: Jay Daley is the CEO of .nz Registry Services, who operate the .nz top level domain and are aiming to implement DNSSEC later this year. Jay was previously the CTO of .uk and has only been moderately deskilled by management so should be able to deliver a presentation on DNSSEC that is roughly right. Synopsis: The talk will cover the basics of DNSSEC, including - what problems it solves, with particular reference to the Great Firewall of China incident - how the keys and signatures work, the role of hashing and the chain of trust (with pretty diagrams!) - operational impact, size, key management and timings - tools and architecture - applications that are now unleashed because of DNSSEC If there is time then Jay may also rant about how root X.509 certificates are a confidence trick and how DNSSEC will finally give us a PKI. Regards, Paul. Paul McKitrick (ITCP) Manager Compliance and Security Domain Name Commission Email: mcs(a)dnc.org.nz Fax: +64 4 495 2115 PO Box 11-881, Wellington, 6142 New Zealand