Learn how to sign DNSSEC

DNSSEC is a signing method that can prevent malicious attacks by hackers, such as directing traffic to other sites. 

We have invited Jakob Schlyter to teach you how to sign DNSSEC keys. Jakob has extensive knowledge in areas such as software development, systems- and protocol design, DNSSEC, VoIP, IPv6 and applied cryptography, and he is a frequent and popular speaker within these areas.

Jakob is well established within organizations such as IETF (Internet Engineering Task Force) and RIPE (Réseaux IP Européens), and is the author of several Internet standards and specifications (IETF RFC). He is also one of the active developers behind OpenBSD, OpenSSH and OpenDNSSEC.

You will learn

  • Brief introduction to DNSSEC and the OpenDNSSEC application
  • Prerequisites for running OpenDNSSEC and description of the lab environment
  • Practical planning of your DNSSEC policies, based on three reference cases
  • SoftHSM installation and initialization
  • Configuration files for ODS, conf.xml , kasp.xml and zonelist.xml
  • Files and folders used by ODS
  • Running OpenDNSSEC
    - Sign a single zone
    - List keys
    - Export public keys
    - Roll a ZSK, manually and automatically
    - Roll a KSK
    - Signing many zones
  • Monitoring the system with the Audit tool
  • System administration
    - Backups
    - Key administration
    - Logging

 

Practical information

The workshop will be held on January 26 2017 from 9.00-16.00 at DK Hostmaster’s resident:

Kalvebod Brygge 45, 3.
Copenhagen V

Registration and breakfast from 8.30
We will provide refreshments and lunch.

The workshop is free of charge. Bring your own laptop with a SSH client.

Sign up now

Sign up by sending an email to tilmelding@dk-hostmaster.dk with your name, company name and email address.

Copyright 2016 All Rights Reserved.