[Main Page](index.html "Main Page") | [Agenda](agenda.html "Agenda")
# DNSSEC Workshop Overview #
This technical workshop consists of lectures and hands-on labs to teach
DNS Security Extensions, targeted at operators who are responsible for
the DNS services in their organization.
## Workshop Topics
* DNS concepts
* DNS server and Resolver configurations
* DNS security extensions - theory and practice
- new record types
- zone signing
- validation
- key management, rollover
- DPS (DNSSEC Practice Statement)
- monitoring
- HSM (Hardware Security Modules)
## Target Audience ##
Network/systems administrators and engineers from ISP/REN/Universities
or corporations, who are responsible for DNS service, and operating
authoritative and/or recursive DNS installations.
## Workshop Prerequisites ##
* Medium to good knowledge of the UNIX/Linux command line environment
* Basic understanding of DNS (this course is not an introduction)
* Basic knowledge of TCP/IP networking
**Please note: Participants are required to bring laptops that are wifi-capable.**
## Class Size ##
This class is suitable for class sizes up to 40 students.
## Objectives ##
* Learn basic DNS concepts such as delegation, replication, authoritative vs recursive resolvers.
* Learn about the real world threats that exploit DNS weaknesses
* Understand the risks you run when your DNS isn't secured
* Learn about the security extensions for DNS: DNSSEC
* Enable signing & validation in the organisation
* Learn about the impact of DNSSEC on one's DNS infrastructure
* Learn about key management
* Help participants take the next step, whether it involves deploying their own signing solution, acquiring a vendor based solution, or using a third party service
