OpenDNSSEC
OpenDNSSEC is a computer program that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.
| Stable release | 2.1.4
/ May 16, 2019[1] |
|---|---|
| Repository |  |
| Written in | C, C++ |
| Operating system | Linux, FreeBSD, NetBSD, Mac OS X, Solaris |
| Type | DNSSEC |
| License | BSD |
| Website | www.opendnssec.org |
| Stable release | 2.5.0
/ September 24, 2018[2] |
|---|---|
| Preview release | 2.5.0-rc1
/ September 11, 2018[3] |
| Repository | |
| Written in | C++ |
| Operating system | Linux, FreeBSD, NetBSD, Mac OS X |
| License | BSD |
| Website | www |
OpenDNSSEC was created as an open-source turn-key solution for DNSSEC. It secures DNS zone data just before it is published in an authoritative name server. OpenDNSSEC takes in unsigned zones, adds digital signatures and other records for DNSSEC and passes it on to the authoritative name servers for that zone. All keys are stored in a hardware security module and accessed via PKCS #11, a standard software interface for communicating with devices which hold cryptographic information and perform cryptographic functions.
OpenDNSSEC uses the Botan cryptographic library, and SQLite or MySQL as database back-end. It is used on the .se, .dk, .nl and .uk top-level domains.[4]
See also
References
- "OpenDNSSEC 2.1.4". 10 August 2017. Retrieved 14 November 2018.
- "SoftHSM 2.5.0". 24 September 2018. Retrieved 14 November 2018.
- "Releases - opendnssec/SoftHSMv2". Retrieved 14 November 2018 – via GitHub.
- "OpenDNSSEC". Retrieved 17 September 2014.