Dear colleagues, [apologies for duplicate postings] As a new service to its members the RIPE NCC offers the DNSSEC training courses. The main objective of the DNSSEC training course is to provide LIRs with sufficient background to be able to deploy DNSSEC in their own organisation as soon as the protocol is standardised. This course also explains the specific procedures set up by the RIPE NCC to to secure the in-addr.arpa zone. The Domain Name System (DNS) is one of the main parts of the Internet infrastructure. At the moment DNS lacks a mechanism to establish the authenticity and integrity of the data it provides. DNSSEC is a set of extensions to provide this end-to-end authenticity and integrity. It is currently being developed within the IETF dnsnext working group. The protocol is about to be finalised and the code implementing the protocol is available in alpha releases. The DNSSEC course consists of two parts: an "Introduction to DNSSEC" and a "real life demonstration" . The "Introduction to DNSSEC" will cover: - DNS security threats - DNSSEC security mechanisms - DNSSEC server protection - DNSSEC data protection - Delegation issues - Key management issues - Current developments Examples are based on the BIND name server. Please note that the DNSSEC is an advanced course, it will: - NOT teach the basics of DNS. - NOT describe how to receive Internet resources from the RIPE NCC nor how to operate a Local Internet Registry (LIR) The target audience of the course are technical staff of LIRs: e.g. network & system operators, engineers, etc. This course is not intended for administrative or management staff (e.g. hostmasters). It is assumed that all attendees are familiar with common DNS terminology, have a practical knowledge in operating DNS servers and are interested in learning the concepts and mechanisms that DNSSEC offers. The DNSSEC course is conducted in the English language and is free of charge, since it is covered by the membership contribution. More information about the DNSSEC training course can be found at: http://www.ripe.net/training/dnssec/ REGISTRATION: You can register for a course at the following URL: http://www.ripe.net/cgi-bin/trainingform.pl.cgi Or by completing the registration form at the end of this email and replying to <training@ripe.net> In order to register for a DNSSEC course you must be an employee of an LIR and either : - be an LIR contact - be confirmed by an LIR contact. LIR contacts are those employees of an LIR who are registered with RIPE NCC as authoritative contact persons. It is expected that most of those interested in the "DNSSEC Training Course" will not be an authorative contact persons for their LIR, therefore will be refused by the course registration "robot". In order to be admited to the course, confirmation email need to be send to <training@ripe.net>. Please approach the LIR contacts from your organisation personally, since the identity of LIR contacts is confidential, and the RIPE NCC is unable to divulge contact persons for any given LIR. Kind Regards, The RIPE NCC Training Team COURSE DATES AND VENUES ======================== Date: Saturday 1st February 2003 Time: 0900 - 1700 Location: Amsterdam, Netherlands AND: Date: Monday 24th February 2003 Time: 0900 - 1700 Location: Frankfurt, Germany AND: Date: Thursday 27th March 2003 Time: 0900 - 1700 Location: Amsterdam, Netherlands REGISTRATION FORM ================= %START PART 1 - Registration 1) Your name Enter First name, Last name in full e.g. John Doe Mary-Beth Walton # NAME [ ] 2) Your Registry ID (format: country-code.<name of registry>) # REG [ ] 3) Your e-mail address # EMAIL [ ] 4) Your NIC handle (optional) # NICHANDLE [ ] 5) The Course you plan to attend (date and location) # COURSE [ ] %END