Domain Name System Security Extensions (DNSSEC)
You can add to the reliability of your fi-domain name by setting up DNSSEC and following information security guidelines.
DNSSEC protects name servers
DNSSEC (DNS Security Extensions or Domain Name System Security Extensions) is a service that improves the information security of name servers. In practice, DNSSEC is a kind of an insurance that guarantees that internet users can access just the websites they intend to visit. Furthermore, DNSSC protects you from attacks targeted at the name server system.
DNSSEC ensures that responses to DNS queries come from the right sender and that the response information has not been modified. When DNSSEC is enabled, responses to DNS queries are digitally signed.
The domain name system gives each domain name an individual IP address (the IP address for www.traficom.fi is 87.239.126.33, for example). The DNSSEC technology ensures that the computer sending the query (e.g. web browser) sees whether the response received at the web address through the DNS comes from a server that has been registered as a trusted server.
To set up DNSSEC, contact the registrar maintaining the name servers for your fi-domain name.
Read More
.fi DNSSEC Practice Statement (DPS)
Follow information security guidelines
Pay attention to information security when you create web pages and use the internet. By anticipating risks, threats are less likely to occur. Moreover, law requires the protection of confidentiality information.
Your computer and data remain secure when you regularly update your:
- operating system
- firewall
- anti-virus software
- and run security updates on all software.
The Information Security Guide explains the basics of increasing the level of information security and data protection. The National Cyber Security Centre Finland (NCSC-FI) at Traficom provides assistance in issues related to security violations and their prevention. On its website, the NCSC-FI informs the public about most recent information security threats and vulnerabilities.
Registry Lock provides added security
Registry Lock is an additional service for fi-domain names that are classified as especially critical (e.g. domain names of banks or governmental organisations). The service adds a layer of security to your most valuable domain names. Registry Lock prevents unintended changes, deletions or transfers if the registrar's system is attacked.
Registry Lock increases the reliability of a domain name but it is an extreme measure as it prevents the administration of the domain name. Therefore, consider carefully whether Registry Lock is worth having as it also restricts your performance.
Contact your registrar to find out whether they offer Registry Lock.