Deploy360 Domain Name System Security Extensions (DNSSEC)

DNSSEC-Tools 1.12.1 Released – New DNSSEC apps, updated tools, Android support, more…

Dnssec tools projectThe DNSSEC-Tools Project today announced the release of DNSSEC-Tools version 1.12.1 with a range of new DNSSEC applications, updates to a number of tools and porting of the DNSSEC validator library to the Android platform.

The new release can be downloaded in various forms from:

The release announcement mentions these new features and capabilities:

  • A new and improved DNSSEC-check utility with a completely re-written GUI and support for a number of platforms including Android and Harmattan (N9) devices.
  • dnssec-nodes now parses unbound log files
  • dnssec-system-tray now parses unbound log files
  • rollerd
    • Added support for phase-specific commands in rollerd. This allows the zone operator to customize processing of the rollerd utility during different rollerd phases.
    • Added support for zone groups in rollerd. This allows a collection of zones to be controlled as a group, rather each of those zones individually.
    • Improved the manner in which rollerd indexes the zones being managed, with the significantly decreased access times for rollerd’s data files. This results in rollerd being able to support a lot more zones with a single rollerd instance.
    • rollctl and the rollover GUI programs may have new commands to allow for immediate termination of rollerd.
  • New DNSSEC-capable applications
    • Added a patch to enable DNSSEC validation in Qt based applications
    • Added patch to enable local validation in NTP, with the ability to handle a specific chicken and egg problem related to the interdependency between DNSSEC and an accurate system clock.
  • Validator library:
    • The library has been ported to the Android OS
    • Added support for hard-coding validator configuration information that gets used in the absence of other configuration data. This feature allows the validator library to be self-contained in environments where setting up configuration data at specific locations in the file system is not always feasible.

It’s very cool to see these new features added and we look forward to seeing what developers build with these new capabilities!

P.S. The DNSSEC-Tools project also seems to have a brand new Twitter account, @DNSSECTools, that could use some followers! 😉