DNSSEC protection for CreoLink
ApplianSys announced today that CreoLink, a telecommunications provider in Cameroon, has upgraded its DNSBOX solution to protect its data against cache poisoning with DNSSEC.
When CreoLink first contacted ApplianSys in 2008, it had 500 IP addresses and was serving 600 residential and corporate customers. At the time, Network Manager at CreoLink, Daniel Kemayou, deployed a DNSBOX300 master and 2 DNSBOX100 slaves for handling DNS.
Now, CreoLink delivers telecommunication services to more than 10,000 customers and has widened the scope of its offering to include Top-Level-Domain (TLD) hosting. This has prompted a revision of its DNS requirements.
“Most TLDs support DNSSEC – a security extension of the DNS protocol that digitally signs the information published by DNS with a set of encrypted keys, making them harder to fake. TLD hosting requires DNSSEC but manual key management is very error-prone – a single mistake in the “key rollover” could cripple CreoLink’s ability to resolve records. CreoLink needed a solution that would handle it automatically,” explains Ross Horn, DNSBOX Sales Executive.
Pleased with the existing DNSBOX solution, Daniel contacted Ross, who identified that upgrading the appliances was best way to go. The company deployed two DNSBOX200 slaves in different cities. These are remotely managed by a DNSBOX400 master.
“DNSBOX makes it easy for CreoLink to store DNSSEC keys securely, providing automated zone signing and key management,” says Ross.
Established in January 2001, Creolink is a telecommunications services provider offering its customers access to high-speed internet and telephony connection of multiple remote sites. Creolink’s customer base spans from individual customers to corporations.