The controversial Stop Online Piracy Act (SOPA) has received a lot of attention of late, with parties ranging from the White House to Rupert Murdoch. Opposition to SOPA has been particularly fierce online, with many sites “blacking out” on January 18 as a form of protest against the bill. The biggest site that will take part in these protests is Wikipedia. Google is also taking part; they have indicated that they will display a link on their front page showing the tech giant’s opposition to the bill.
We reiterate our position on this matter, which we first stated on this blog a month ago. We remain concerned about provisions in the law that could seriously compromise DNSSEC, which will play a key part in future cybersecurity strategy. At the very least, by ensuring the secure transfer of DNS data from servers to end users, DNSSEC will make man-in-the-middle and cache poisoning attacks much more difficult. DNSSEC may also be used as the foundation for further tools and techniques that will aid in greater online security
We endorse the position of the White House, which we quote below:
We must avoid creating new cybersecurity risks or disrupting the underlying architecture of the Internet. Proposed laws must not tamper with the technical architecture of the Internet through manipulation of the Domain Name System (DNS), a foundation of Internet security. Our analysis of the DNS filtering provisions in some proposed legislation suggests that they pose a real risk to cybersecurity and yet leave contraband goods and services accessible online. We must avoid legislation that drives users to dangerous, unreliable DNS servers and puts next-generation security policies, such as the deployment of DNSSEC, at risk.