University of Cincinnati DNSSEC Vendor Analysis Senior Design
- Slides: 18
University of Cincinnati DNSSEC Vendor Analysis Senior Design III – Spring 2010 Darryl Marsh, Patrick Stasko
Agenda • • • DNSSEC Recap DNSSEC Additional Information DNSSEC Burdens Project Description Intended Use Deliverables Proof of Design Final Recommendation Conclusion
DNSSEC Recap
DNSSEC Additional Information • • Public Key Infrastructure Origin Authentication Integrity Checking Chains of Trust
DNSSEC Issues • Administrative Burden – Multiple tasks – Appliances makes administration easier • Overhead • Processor, memory and bandwidth • What DNSSEC Doesn’t Do • Records are not encrypted • Does not protect against specific attacks
Project Description • Research the DNSSEC technology • Independently evaluate DNSSEC appliance vendors • Blue. Cat Networks, Infoblox, Secure 64 and Xelerance “At this time we have limited resources in both man power and evaluation units to provide you with [a product demo]. ” - Xelerance
Intended Use • Implement DNSSEC on UCit’s external network • Provide a final recommendation to UCit – Aid in the purchasing decision
Deliverables • Business Scorecard – – • Blue. Cat Networks Secure 64 Infoblox Xelerance Technical Scorecard – – Blue. Cat Networks Secure 64 Infoblox Xelerance • Recommendations – Business Recommendation – Technical Recommendation – Final Recommendation
Proof of Design - Process
Proof of Design - Photos
Proof of Design - Photos
Proof of Design - Photos
Proof of Design – Comparison Blue. Cat Infoblox Secure 64 Xelerance HA Support - Gigabit Interfaces - NIST Best Practices - Revertible Deployed Changes - No Root Access - Keys Encrypted - DNS Software Core BIND NSD -
Proof of Design - Considerations • Trust Anchors / Islands of Trust – EDUCAUSE ITAR – Others • Increased Packet Size – Firewalls – Reevaluate bandwidth needs
Proof of Design - Recommendations Blue. Cat Infoblox Secure 64 Technical 130 142 128 Business 5 5 0 Technical Recommendation Business Recommendation
Final Recommendation
Conclusion • • DNSSEC Recap DNSSEC Additional Information DNSSEC Burdens Project Description Intended Use Deliverables Proof of Design Final Recommendation
Questions ?
- Dnssec analyzer
- University of cincinnati physicians inc
- University of cincinnati midwifery
- University of cincinnati co op program
- Chemical engineering university of cincinnati
- University of cincinnati chemical engineering
- University of cincinnati physicians inc
- Soma sengupta university of cincinnati
- Vendor cost analysis
- Supplier rating system
- Next generation application management
- Cincinnati stroke scale
- Befast stroke scale
- Meetup.com cincinnati
- Southwestern college cincinnati ohio
- Types of infarcts in brain
- Cincinnati skalası nedir
- Escala cincinnati
- Cstars cincinnati