Approximately 80 percent of federal agency websites failed to meet a December 31 deadline for deploying DNS security technology according to media reports. The technology, when properly implemented, makes it significantly more difficult for hackers to assault the websites and redirect traffic.
Only 20 percent of federal agencies were found to have complied with implementing the DNS Security Extensions which uses public key encryption and digital authentication. The requirement to update the .gov domains was put forth by the Office and Management and Budget in August of 2008.
Research conducted by DNS vendor Secure64 found that “about 20% of agencies had signatures as of last week,” according to Mark Beckett, vice president of marketing for Secure64. “Eighty percent don’t have any signatures up there. One can speculate about why that is. They may be working on it but haven’t pushed the signatures into production yet. All you can tell from the outside looking in is that there’s no evidence of progress on the DNSSEC mandate.”
Some researchers claim that DNSSEC is merely not a priority for most IT departments.