A proposed security change to the underlying infrastructure of the Internet has been significantly delayed due to fears that it could knock an estimated one-in-four global Internet users, or 750 million people, offline at a stroke. The update of the Root Zone Domain Name System Security Extensions (DNSSEC) in what is called a ‘key signing key (KSK) rollover', was originally planned for 11 October. The update involves generating a new cryptographic key pair and distributing the new public component to the Domain Name System Security Extensions (DNSSEC)-validating resolvers, which in turn direct internet users to the websites they have requested. The KSK establishes a chain of trust from the root zone through the entire domain name system so that DNS resolvers know they are delivering high-quality results. However, although the change has been widely publicised, a significant number of resolvers used by Internet Service Providers (ISPs) and Network Operators are not yet ready for the Key Rollover, according to ICANN.
Digital Tech Insider
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street