*Additional Fee Required = $35
In 2011, more than half of U.S. federal agencies have not yet deployed the domain name system security extensions (DNSSEC) mandated by OMB and FISMA. In the meantime, private-sector and international deployment continues in other domains around the world. This session will assess progress, identify lessons learned and offer new solutions and models for successful deployment, with an emphasis on solutions.
Participants will learn:
-Where their agencies stand compared to the rest of the .gov domains
-How DNSSEC fits into current cybersecurity priorities for the U.S. government
-Successful deployment models in the public and private sectors, from other domains, ISPs, registrars and more
-New apps, APIs, tools and products to help with federal deployment
Room: 146A
Schedule
10:00 am: Welcome and Opening Remarks
Where does DNSSEC fit into the U.S. government's current cybersecurity priorities?
•W. Douglas Maughan, Cyber Security Division Director, Science and Technology Directorate, U.S. Department of Homeland Security
•Andy Ozment, Director for Federal Information Security Policy, White House National Security Council
10:20 am: DNS-2: Where does DNSSEC stand in .gov? A Status Update
OMB and FISMA require DNSSEC deployment. How does your agency's deployment stack up against other federal sites? A status report on what .gov has accomplished and what remains to be done.
Presented by:
•Doug Montgomery (Moderator), National Institute of Standards and Technology
•Lee Ellis, General Services Administration
•Earl Crane, Department of Homeland Security
•Sean Donelon, Department of Homeland Security
•Scott Rose, National Institute of Standards and Technology
11:05 am: Break
11:15 am: DNS-3: Private Sector Deployment in .com, .net, .org and Beyond
Lessons government IT managers can learn from other sectors and countries' deployment of DNSSEC.
Presented by:
•Doug Montgomery (Moderator), National Institute of Standards and Technology
•Rodney Joffe, Neustar
•Matt Larson, VeriSign
•Simon McCalla, Nominet
•Lance Wolak, Public Interest Registry
12:00 pm: DNS-4: The Drive to Validation: Real-life Lessons
Lessons on what to plan for, and what happens when enterprises start validating DNSSEC responses.
Presented by:
•Chris Griffiths, Comcast
•Scott Rose, National Institute of Standards and Technology
12:25 pm: DNS-5: What to Ask Vendors about DNSSEC
When choosing hardware or software solutions to deploy DNSSEC, here's what NIST experts recommend you look for, and ask about.
Presented by:
•Scott Rose, National Institute of Standards and Technology
12:30 pm: Lunch break and Visit Exhibits
2:00 pm: DNS-6: Beyond Infrastructure: Emerging DNSSEC Apps and APIs
Since significant infrastructure components now support DNSSEC, learn how end user applications benefit from DNSSEC today and in the future.
Presented by:
•Matt Larson, VeriSign
•Russ Mundy, Sparta
2:45 pm: Break
3:00 pm: DNS-7: New Tools From Vendors: Deployment Options
Vendors with hardware and software solutions describe what's available for DNSSEC deployment.
Presented by:
•Steve Crocker (Moderator), Shinkuro and ICANN
•Mark Beckett, Secure64
•William Dixon, Microsoft
•James Galvin, Afilias
•Walter Henderson, Infoblox
•Nathan Myer, F5 Networks
•Bruce Van Nice, Nominum
•Suzanne Woolf, Internet Systems Corporation
4:00 pm: Program Concludes