SOURCE: VeriSign, Inc.

VeriSign, Inc.

December 10, 2010 08:00 ET

VeriSign Deploys DNS Security Extensions in .net Zone

Latest Milestone in Securing Domain Name System Builds on Effort to Protect DNS Data From Cache Poisoning and Man-in-the-Middle Attacks

DULLES, VA--(Marketwire - December 10, 2010) - VeriSign, Inc. (NASDAQ: VRSN), the trusted provider of Internet infrastructure services for the networked world, today announced it has deployed DNS Security Extensions (DNSSEC) in the .net zone.

The .net zone is the largest yet to be DNSSEC enabled, with more than 13 million domain name registrations worldwide. The .net signing also represents one of the most critical implementations of DNSSEC technology, since .net serves as the underpinning for many critical Internet functions. 

"VeriSign's roll-out of DNSSEC is on schedule with the signing of .net in 2010. The DNS data associated with .net registrations will be protected from many hackers and identity thieves trying to redirect users' queries to malicious sites through cache poisoning," said Raynor Dahlquist, Senior Vice President and General Manager of Naming Services at VeriSign. "There is, however, more work to be done, as ISPs, browser vendors, registrars and other members of the DNS ecosystem confirm that their solutions and services are ready for DNSSEC enablement. We'll continue to work with all of those parties to shepherd a stable deployment of DNSSEC, particularly as we prepare to sign the .com zone in Q1 2011."

DNSSEC applies digital signatures to DNS data to authenticate the data's origin and verify its integrity as it moves throughout the Internet. The security extensions are designed to protect the DNS from attacks intended to redirect queries to malicious sites by corrupting DNS data stored on recursive servers. The successful implementation of DNSSEC will greatly reduce a hacker's ability to manipulate DNS data. The resulting digital signatures on that DNS data are validated through a "chain of trust."

"Go Daddy works to keep the Internet safe for all users, and DNSSEC is an important additional step toward keeping the infrastructure more secure," said Warren Adelman, President and Chief Operating Officer of, the world's largest domain name registrar. "That's why Go Daddy supports DNSSEC for .net. We believe DNSSEC helps us continue providing our customers with what they want and need -- security and reliability."

The .net milestone is the latest achievement in VeriSign's efforts to improve the integrity of Internet communications and transactions by implementing DNSSEC throughout the DNS. By protecting the .net zone with DNSSEC, VeriSign can now include DNSSEC-enabled records from domain name registrars in its authoritative .net registry. Today's milestone follows months of deliberate and rigorous testing of DNSSEC, and builds on VeriSign's collaboration with EDUCAUSE and the U.S. Department of Commerce to deploy DNSSEC in the .edu zone earlier this year. VeriSign expects to sign .com by first quarter 2011.

A key part of VeriSign's DNSSEC collaboration with the Internet community is the company's operation of the DNSSEC Interoperability Lab. Staffed by VeriSign personnel, the lab helps solution and service providers determine if DNS packets containing DNSSEC information, which are typically larger than standard DNS packets, will cause problems for their Internet and enterprise infrastructure components. The lab is helping to ensure that the entire Internet communications ecosystem is ready for DNSSEC.

VeriSign's DNSSEC initiatives also dovetail with Project Apollo, the company's effort to dramatically scale up the Internet infrastructure that delivers DNS from its current levels by a factor of a thousand. Doing so will help to manage an estimated 4 quadrillion queries per day in 2020. The Apollo effort follows on the heels of the successful completion of VeriSign's Project Titan that aimed to improve DNS infrastructure tenfold over 2007 levels. Project Apollo is designed to move beyond Titan, to help VeriSign meet the Internet infrastructure challenges of the next decade.

About VeriSign  
VeriSign, Inc. (NASDAQ: VRSN) is the trusted provider of Internet infrastructure services for the networked world. Billions of times each day, VeriSign enables companies and consumers all over the world to connect online with confidence. Additional news and information about the company is available at

Statements in this announcement other than historical data and information constitute forward-looking statements within the meaning of Section 27A of the Securities Act of 1933 as amended and Section 21E of the Securities Exchange Act of 1934 as amended. These statements involve risks and uncertainties that could cause VeriSign's actual results to differ materially from those stated or implied by such forward-looking statements. The potential risks and uncertainties include, among others, the uncertainty of future revenue and profitability and potential fluctuations in quarterly operating results due to such factors as increasing competition, pricing pressure from competing services offered at prices below our prices and changes in marketing practices including those of third-party registrars; the current global economic downturn; challenges to ongoing privatization of Internet administration; the outcome of legal or other challenges resulting from our activities or the activities of registrars or registrants; new or existing governmental laws and regulations; changes in customer behavior; the inability of VeriSign to successfully develop and market new services; the uncertainty of whether our new services will achieve market acceptance or result in any revenues; system interruptions; security breaches; attacks on the Internet by hackers, viruses, or intentional acts of vandalism; and the uncertainty of whether Project Apollo will achieve its stated objectives. More information about potential factors that could affect the company's business and financial results is included in VeriSign's filings with the Securities and Exchange Commission, including in the Company's Annual Report on Form 10-K for the year ended December 31, 2009, Quarterly Reports on Form 10-Q and Current Reports on Form 8-K. VeriSign undertakes no obligation to update any of the forward-looking statements after the date of this announcement.

(C)2010 VeriSign, Inc. All rights reserved. VeriSign, VeriSign Trust, and other related trademarks, service marks, and designs are registered or unregistered trademarks of VeriSign, Inc., or its affiliates or subsidiaries in the United States and other countries. All other trademarks are property of their respective owners.