BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:How DNSSEC secures DNS - Sizhe Sun\, Sidney Sussex College
DTSTART:20180307T190000Z
DTEND:20180307T193000Z
UID:TALK102700@talks.cam.ac.uk
CONTACT:Matthew Ireland
DESCRIPTION:Domain Name System(DNS)\, despite being one of the most import
 ant and successful parts of the Internet infrastructure\, is notoriously v
 ulnerable to spoofing attacks due to its design flaws. DNSSEC is a securit
 y extension to DNS that aims to ameliorate the problem by applying public-
 key cryptography to provide data origin authentication and integrity valid
 ation. DNSSEC implements a public key infrastructure(PKI) that has also le
 d to applications using it as a platform to securely distribute public key
 s.\n\nFirst part of this talk introduces DNSSEC\, and explains how it work
 s as well as how it builds a chain of trust model to secure DNS. In the se
 cond part a specific application of using DNSSEC to securely publish SSH f
 ingerprint is briefly introduced. We will then discuss limitations and pro
 blems of DNSSEC which hinders its wider deployment.
LOCATION:Jock Colville Hall\, Churchill College
END:VEVENT
END:VCALENDAR