Brother
Professional
- Messages
- 2,590
- Reaction score
- 539
- Points
- 113
The investigation of the incident is still ongoing.
The reason for a large-scale failure in the work of the Runet, which occurred the day before, was an error when updating the security extension key of the domain name system (DNSSEC), the Coordination Center of the domains .ru and .RF.
"The resulting key collision, which is currently being investigated by specialists of the Internet Technical Center (TCI) and MSK-IX, has led to temporary unavailability of the zone .RU for some Internet users. After the failure was detected, the updated keys were revoked, and the zone's health was restored .RU was fully restored, which took about two hours, including the distribution of data through the DNS system. < ... > At present, the investigation of the incident continues, but it is already clear that the main reason for the failure was the imperfection of the software used to create encryption keys, " the coordination center commented on the situation.
The domain center added that DNSSEC, like any other technological solution, requires improvements over time to correct detected errors.
DNSSEC was designed to increase the security of the domain name infrastructure against possible cyber attacks. Using cryptographic signatures, this protocol allows you to verify the authenticity of DNS records and prevent them from being spoofed by intruders.
A large-scale failure began on January 30 in the late afternoon – in several regions of Russia there were problems with mobile communications and Internet access. There were also difficulties in using Russian applications and services in the country and from abroad. The situation returned to normal only after a few hours.
The reason for a large-scale failure in the work of the Runet, which occurred the day before, was an error when updating the security extension key of the domain name system (DNSSEC), the Coordination Center of the domains .ru and .RF.
"The resulting key collision, which is currently being investigated by specialists of the Internet Technical Center (TCI) and MSK-IX, has led to temporary unavailability of the zone .RU for some Internet users. After the failure was detected, the updated keys were revoked, and the zone's health was restored .RU was fully restored, which took about two hours, including the distribution of data through the DNS system. < ... > At present, the investigation of the incident continues, but it is already clear that the main reason for the failure was the imperfection of the software used to create encryption keys, " the coordination center commented on the situation.
The domain center added that DNSSEC, like any other technological solution, requires improvements over time to correct detected errors.
DNSSEC was designed to increase the security of the domain name infrastructure against possible cyber attacks. Using cryptographic signatures, this protocol allows you to verify the authenticity of DNS records and prevent them from being spoofed by intruders.
A large-scale failure began on January 30 in the late afternoon – in several regions of Russia there were problems with mobile communications and Internet access. There were also difficulties in using Russian applications and services in the country and from abroad. The situation returned to normal only after a few hours.
