The DNS system is one of the key underpinnings of the Internet, but because the system isn’t owned by any one entity, no one is responsible for the security of the entire network. The owner of each DNS server secures it as he sees fit, but as the discussions at the recent Global DNS Security, Stability and Resiliency Symposium showed, there is a clear need for some leadership on DNS security.
In a blog post about the symposium, Danny McPherson of Arbor Networks, who chaired one of the sessions, said someone needs to step to the fore on this issue:
The absence of leadership in this area has left an obvious void – the tip-toeing that ICANN had to do just to facilitate organization of the Symposium, and their [seemingly senseless] attempt to take an obvious backseat to other Symposium collaborators in order to avoid political backlash for trying to do the right thing, is in my opinion unfortunate at best. I applaud ICANN and the other organizers here for bringing this group together and facilitating these discussions, and recommend that you give the report a review if you get an opportunity.
The symposium’s full report lays out some key next steps, including the development of a coordinated incident response process and awareness education for all of the stakeholders.