DNSSEC is an old technology, the current version having been standardised in 2005 and the signing of the DNS root zone (including that of .fr) dating back to 2011. And yet its deployment is far from universal1, even though the threats to DNS security are a constant source of worry for decision-makers and operational stakeholders. What is the cause of this unease and what can we do to overcome it? |