Bruce Schneier published a blog today "Dept of Homeland Security Wants DNSSEC Keys" describing an article from The Register that says the US Department of Homeland Security is trying to gain access to the master keys for DNSSEC. As Bruce describes it "This is a big deal" and he's right.
Bruce's blog says the following:
"
Obtaining the master key for the DNS root zone would give US authorities the ability to track DNS Security Extensions (DNSSec) "all the way back to the servers that represent the name system's root zone on the internet".
Access to the "key-signing key" would give US authorities a supervisory role over DNS lookups, vital for functions ranging from email delivery to surfing the net. At a recent ICANN meeting in Lisbon, Bernard Turcotte, president of the Canadian Internet Registration Authority, said managers of country registries were concerned about the proposal to allow the US to control the master keys, giving it privileged control of internet resources, Heise reports.
"
There is no way that any one government should have access to the keys. It would put the entire freedom of the internet hostage to the US or any other government.
Guy
www.authenticationworld.com
guy.huntington@authenticationworld.com
del.icio.us