This email is to advise members of NZNOG of a consultation being undertaken that you, or
your organisation, may be interested in commenting on. Apologies if you have already
received a similar email via another mailing list.
.nz is preparing to introduce the Domain Name System Security Extensions (DNSSEC) to
strengthen the security and reputation of the .nz domain name space.
Vulnerabilities exist in the Domain Name System (DNS) that allow miscreants to re-direct,
intercept, or modify users’ Internet traffic, each with potentially devastating
consequences. DNSSEC has been developed to add to the security features of the DNS, and
to mitigate those vulnerabilities.
Attached are the consultation paper and a background paper that explains DNSSEC in more
detail and why we are implementing it. The consultation paper does not go into detail
about process or how DNSSEC will be implemented at a technical or operational level but
rather has a number of proposals relating to how we are planning to have DNSSEC operate
within .nz policy.
The papers can also be found here:
All comments received in this initial consultation will be considered, and draft changes
to the .nz policies developed. There will then be a subsequent consultation on those
proposed amendments to the .nz policies related to the DNSSEC implementation.
Comments on the consultation paper should be sent to info(a)dnc.org.nz by midday 11 October
If you have any questions about this please do not hesitate to contact me.
Paul McKitrick (ITCP)
Manager Compliance and Security
Domain Name Commission
Fax: +64 4 495 2115
PO Box 11-881, Wellington, 6142