Categories

Blog
3
cPanel
2
Domain support
6
Email Support
8
Frequently Asked Questions for Ajira
11
Payment Details
1
PHP
1
Security
3
Software
3
SSL Certificates
1
Terms and Conditions of Service
1

  Categories

  Tag Cloud

.africa domain registration .co.ke .co.ke domain .co.ke domain hosting .co.ke domain registration .co.ke domains .co.ke email hosting .co.ke reseller .co.za domain registration .htaccess .ke domain registration .ke domain transfer .ke domains .ke kenic .ke second level domain registration .za domain registration Ajira FAQ ajira.go.ke ajiraportal.co.ke apache best web hosting in Kenya Bitcoin blackmail blocking spam buy .co.ke domain buy ke domain changing NameServer Changing NS co ke domain price co.ke reseller com domain kenya corporate email solutions in kenya corporate email solutions in nairobi corporate emails cost of .co.ke domain cpanel create affiliate link create email accounts in cpanel create emails crm digital certificate DNS DNSSEC domain kenya domain kenya cost of ke domain domain registration in souh africa dovecot drupal DS Record email email hosting email hosting in kenya email hosting kenya email hosting services email security enrol to ajira platform enrol to ajira.go.ke portal EV SSL exim extended validation fighting spam Hacking horde hordes how to buy a domain in kenya imap IMPA joomla ke domain registration ke domains kenic .ke domain kenic authorised registrar malware mediawiki MITM moodle nameserver NS Outlook perl phishing phishing emails php pop POP3 prevent spoof email python python script register .co.ke domain register .ke domain register .ke secondary level domain register an account roundcube sextortion smtp software software supported spam spam assassin squirrelmail SSL certificates sugarcrm Thunderbird To create an email account: Log into cPanel at www.yourdomain.c transfer .ke domain transworldafrica.com emails transworldafrica.com terms of service type the desired password twice. Make a selection for Mailbox Qu type the name you want and select the domain name from the adjac web hosting and domain registration web hosting and domain registration in Kenya web hosting in kenya webmail website hosting website validation wikipedia wildcard SSL

  Support

My Support Tickets
Announcements
Knowledgebase
Downloads
Network Status
Open Ticket

DNSSEC Support Print

  • DS Record, DNSSEC, MITM, DNS
  • 0

At transworldafrica.com, we sign all domains hosted with us with DNSSEC.  If you want a domain to have a DS Record, then this is the place to be. See below dig command of one of our signed domains.

dig diggui.com <<>> @8.8.8.8 transworldafrica.co.ke DS

Domain Name System Security Extensions (DNSSEC) strengthens authentication in DNS using digital signatures based on public-key cryptography. With DNSSEC, it's not DNS queries and responses themselves that are cryptographically signed, but rather DNS data itself is signed by the owner of the data.

Every DNS zone has a public/private key pair. The zone owner uses the zone's private key to sign DNS data in the zone and generate digital signatures over that data. As the name "private key" implies, this key material is kept secret by the zone owner. The zone's public key, however, is published in the zone itself for anyone to retrieve. Any recursive resolver that looks up data in the zone also retrieves the zone's public key, which it uses to validate the authenticity of the DNS data. The resolver confirms that the digital signature over the DNS data it retrieved is valid. If so, the DNS data is legitimate and is returned to the user. If the signature does not validate, the resolver assumes an attack, discards the data, and returns an error to the user.

DNSSEC adds two important features to the DNS protocol:

  • Data origin authentication allows a resolver to cryptographically verify that the data it received actually came from the zone where it believes the data originated.
  • Data integrity protection allows the resolver to know that the data hasn't been modified in transit since it was originally signed by the zone owner with the zone's private key.

DNSSEC Protect DNS Data against

  1. cache spoofing
  2. man in the middle (MITM) attacks
  3. take-over of an authoritative server
  4. rogue secondaries

Other important points of DNSSEC

  1. DNSSEC Protect DNS server against denial of service attacks.
  2. DNSSEC signs data to guarantee authenticity and integrity. It assures a client that an RRSet is from the proper authoritative server and has not changed.
  3. DNNSEC does not encrypt data to provide privacy. Anyone can find out the RRSets you request

Was this answer helpful?

Related Articles

How do I register a domain? To register a domain, which can be .co.ke .ne.ke .ac.ke .me.ke .mobi.ke .com .net .org .ngo .ong... Who is a Reseller? A Reseller is an individual who registers domains on behalf of a registrar. .KE Reseller program... Act Now. Register .ke second level domain We would like to bring to your attention the introduction of second level domain registration in... How to Transfer a domain out How do you transfer a domain from us?You can always get your transfer code through login to your... How to Change DNS NameServer (NS) A nameserver is a server owned by a web host that is used to manage the domain names associated...
« Back

Powered by WHMCompleteSolution

  Tag Cloud

.africa domain registration .co.ke .co.ke domain .co.ke domain hosting .co.ke domain registration .co.ke domains .co.ke email hosting .co.ke reseller .co.za domain registration .htaccess .ke domain registration .ke domain transfer .ke domains .ke kenic .ke second level domain registration .za domain registration Ajira FAQ ajira.go.ke ajiraportal.co.ke apache best web hosting in Kenya Bitcoin blackmail blocking spam buy .co.ke domain buy ke domain changing NameServer Changing NS co ke domain price co.ke reseller com domain kenya corporate email solutions in kenya corporate email solutions in nairobi corporate emails cost of .co.ke domain cpanel create affiliate link create email accounts in cpanel create emails crm digital certificate DNS DNSSEC domain kenya domain kenya cost of ke domain domain registration in souh africa dovecot drupal DS Record email email hosting email hosting in kenya email hosting kenya email hosting services email security enrol to ajira platform enrol to ajira.go.ke portal EV SSL exim extended validation fighting spam Hacking horde hordes how to buy a domain in kenya imap IMPA joomla ke domain registration ke domains kenic .ke domain kenic authorised registrar malware mediawiki MITM moodle nameserver NS Outlook perl phishing phishing emails php pop POP3 prevent spoof email python python script register .co.ke domain register .ke domain register .ke secondary level domain register an account roundcube sextortion smtp software software supported spam spam assassin squirrelmail SSL certificates sugarcrm Thunderbird To create an email account: Log into cPanel at www.yourdomain.c transfer .ke domain transworldafrica.com emails transworldafrica.com terms of service type the desired password twice. Make a selection for Mailbox Qu type the name you want and select the domain name from the adjac web hosting and domain registration web hosting and domain registration in Kenya web hosting in kenya webmail website hosting website validation wikipedia wildcard SSL

  Support

My Support Tickets
Announcements
Knowledgebase
Downloads
Network Status
Open Ticket