Skip to end of metadata
Go to start of metadata

A major obstacle to the widespread adoption of DNSSEC is the complexity of implementing it. There is no package that one can install on a system, click the "start" button, and have DNSSEC running. Instead, there are a variety of tools, none of which on their own is a complete solution. To actually run a DNSSEC-enabled authoritative server requires writing custom scripts to link them together. Even then, aspects of DNSSEC management such as key management and use of hardware assistance (such as HSM:s) have not been adequately addressed.

The aim of the OpenDNSSEC project is to produce software that will provide this comprehensive package. Theoretical and operational experience has resulted in the specified requirements and the system design.

Further more, the project plan specifies all the deliverables, the time plan, and how the project is managed.

  • No labels