DE
FR
IT
EN
About us
Blog
Jobs 4
Meet
Support
WEB HOSTING
SERVER
DOMAINS
E-MAIL & OFFICE
WEBSITE
WEBSHOP
SEO
ABOUT US
BLOG
Jobs4
Support
Login
Making the internet that little bit more secure with DNSSEC

Making the internet that little bit more secure with DNSSEC

Hostpoint recently made it possible to add a DNSSEC signature to its own domains, enabling the accuracy of DNS responses to be verified. But what exactly is DNSSEC? And what’s the point of this protection? Hostpoint explains.

Domains Security
Mauro Landolt Mauro Landolt · Head of Communication

Some things are hard to imagine from our present-day perspective. In the past, if you wanted to reach someone and didn’t know their phone number, often the only way of doing so was to use the directory assistance or to look in the phone book. What was for a long time the directory assistance service or the Yellow Pages in telecommunications has always been the domain name system (known as the “DNS” for short) on the internet.

On the internet, computers communicate using IP addresses. But we humans aren’t computers, and we can hardly remember the cumbersome and sometimes quite long combinations of numbers, which is why the DNS was introduced in the early 1980s (1984, to be precise).

The DNS is a decentralized database that’s distributed around the globe. When a user enters a domain, such as www.hostpoint.ch, in their browser, the DNS ensures that the correct IP address is established from the responsible DNS servers using a hierarchically arranged query process.


However, such queries are always based on trust. You have to trust that the information (e.g. IP address or responsible name servers) that the information providers are giving you is correct and has not been changed en route.

DNS queries aren’t invulnerable to abuse

Time and time again, this trust is unfortunately abused. Let’s take the example of an internet user who’d like to access their bank’s online banking page. But instead of landing on the real web page, an attacker in the DNS query process plants a fake IP address, leading the user to a fake website. This example shows why mechanisms in the DNS that can prevent such scenarios or at least detect the attempted fraud are necessary. And this is precisely where DNSSEC comes in.

DNSSEC stands for “Domain Name System Security Extensions” and works on the basis of verifiable cryptographic signatures that should ensure both the authenticity and the integrity of the queried data in the DNS. During DNS queries, these security extensions can then be used to check whether the received data is correct and unaltered.

Going back to our above example, when the user queries the online banking website’s IP address, an attacker attempts to provide them with an incorrect IP address. However, since the bank has protected its domain with DNSSEC, the unlawful attempt to provide false information can be detected and thwarted.

But there are also desirable things that DNSSEC unfortunately can’t do. While the information is indeed secured against falsification, it is not encrypted, so DNSSEC doesn’t offer additional privacy compared to an unsecured DNS.

Making the internet that little bit more secure as a domain owner

Most familiar domain extensions (top-level domains) such as .ch now support DNSSEC. It’s high time that this technology was also rolled out to the next level down in the DNS hierarchy: domains that are available for anyone and everyone around the world to purchase, such as hostpoint.ch or your-own-domain.ch.

Hostpoint would like to make a contribution here, which is why it is now offering customers the option of activating DNSSEC for their domains. It was one of the first providers in Switzerland to support security extensions for external name servers. DNSSEC can now be activated for domains on the Hostpoint name servers.

When developing and implementing this function, Hostpoint attached particular importance to the complex technical processes and interrelationships running completely automatically in the background. This means that customers don’t need to have in-depth prior technical knowledge or to create comprehensive configurations to activate DNSSEC. Activation is extremely easy and can be performed at the touch of a button in the Hostpoint Control Panel, provided that the corresponding domain is already running on the Hostpoint name servers.

Additional interesting info:


The DNSViz web tool can be used to visualize any domain’s signature status. The entire chain of evidence for the hierarchical signature process can be traced for DNSSEC-protected domains.


Hostpoint customers who’d like to activate DNSSEC for their domains should click here:
To my domains

Register domains now – it’s extremely easy at Hostpoint:
Buy a domain

Anyone who’d like to transfer their domains to Hostpoint can do so here:
Domain transfer

Domains Security
From zero to digital: What startups need for a digital launch

From zero to digital: What startups need for a digital launch

Expertise
Claudius Röllin Claudius Röllin · Co-Founder & CPO
Phishing in the age of artificial intelligence

Phishing in the age of artificial intelligence

Security
Martin Schlatter Martin Schlatter · Abuse Desk Specialist
Domain extension .swiss coming soon for private individuals

Domain extension .swiss coming soon for private individuals

Domains
Sebastian Rosa Sebastian Rosa · Social Media & Content Manager
How to migrate your website to Hostpoint

How to migrate your website to Hostpoint

Hosting & e-mail
Claudius Röllin Claudius Röllin · Co-Founder & CPO
Optimization made easy: must-have WordPress plugins

Optimization made easy: must-have WordPress plugins

Websites & shops
Rita Ludwig-Helmchen Rita Ludwig-Helmchen · Technical Consultant
Make your online shop a success with these tips and tricks

Make your online shop a success with these tips and tricks

Websites & shops
Sebastian Rosa Sebastian Rosa · Social Media & Content Manager
ICT careers without gender boundaries: the influence of National Future Career Day

ICT careers without gender boundaries: the influence of National Future Career Day

Inside
Sebastian Rosa Sebastian Rosa · Social Media & Content Manager
The new FADP and the cookie banner confusion: what are the latest rules?

The new FADP and the cookie banner confusion: what are the latest rules?

Expertise
Lucian Hunger Lucian Hunger · Attorney at Law, VISCHER
SEO for your website: what you need to know about search engine optimization

SEO for your website: what you need to know about search engine optimization

Expertise Websites & shops
Nadine Jordan Nadine Jordan · Social Media & Content Manager
Allow us to introduce you to the new e-mail services from Hostpoint

Allow us to introduce you to the new e-mail services from Hostpoint

Hosting & e-mail
Claudius Röllin Claudius Röllin · Co-Founder & CPO
The new Data Protection Act will take effect in 2023. What you need to know

The new Data Protection Act will take effect in 2023. What you need to know

Expertise
Lucian Hunger Lucian Hunger · Attorney at Law, VISCHER
Third-party cookies to be phased out on Chrome – what that means

Third-party cookies to be phased out on Chrome – what that means

Expertise
Claudius Röllin Claudius Röllin · Co-Founder & CPO
Looking for eye-catching icons for your website? Find them here

Looking for eye-catching icons for your website? Find them here

Expertise
Mauro Landolt Mauro Landolt · Head of Communication
How to write a good privacy policy for your website

How to write a good privacy policy for your website

Expertise
Sarah Bischof Sarah Bischof · Attorney at Law, VISCHER
Counted and compared: the Swiss internet in figures

Counted and compared: the Swiss internet in figures

Expertise
Mauro Landolt Mauro Landolt · Head of Communication
For an easy-to-read website, fonts are your friend

For an easy-to-read website, fonts are your friend

Expertise
Mauro Landolt Mauro Landolt · Head of Communication
How does a domain transfer work and what should be considered?

How does a domain transfer work and what should be considered?

Domains
Dario Baumgartner Dario Baumgartner · Head of Domains
“My journey from apprenticeship to system engineer at Hostpoint”

“My journey from apprenticeship to system engineer at Hostpoint”

Inside
Pascal Christen Pascal Christen · Junior System Engineer
WordPress 6.0 is coming soon! What users can look forward to

WordPress 6.0 is coming soon! What users can look forward to

Websites & shops
Rita Ludwig-Helmchen Rita Ludwig-Helmchen · Technical Consultant
Looking for images for your website? Here’s what you need to know

Looking for images for your website? Here’s what you need to know

Expertise
Mauro Landolt Mauro Landolt · Head of Communication
Focus on hacking (2): What hackers want to gain by attacking my website

Focus on hacking (2): What hackers want to gain by attacking my website

Security
Martin Schlatter Martin Schlatter · Abuse Desk Specialist
Focus on hacking (1): What to do if your website has been hacked?

Focus on hacking (1): What to do if your website has been hacked?

Security
Martin Schlatter Martin Schlatter · Abuse Desk Specialist
The importance of the Core Web Vitals in Google rankings

The importance of the Core Web Vitals in Google rankings

Expertise
Claudius Röllin Claudius Röllin · Co-Founder & CPO
“We are a well-coordinated and very collegial team.”

“We are a well-coordinated and very collegial team.”

Inside
Michèle Bücheler Michèle Bücheler · Head of Human Resources
Hostpoint Webshop: the main features at a glance

Hostpoint Webshop: the main features at a glance

Websites & shops
Boban Lapcevic Boban Lapcevic · Technical Consultant
“We recognized a need for weekend phone support.”

“We recognized a need for weekend phone support.”

Inside
Mauro Landolt Mauro Landolt · Head of Communication
What is WordPress? A short introduction

What is WordPress? A short introduction

Websites & shops
Claudius Röllin Claudius Röllin · Co-Founder & CPO
More than just .ch and .com: the huge variety of top-level domains

More than just .ch and .com: the huge variety of top-level domains

Domains
Dario Baumgartner Dario Baumgartner · Head of Domains
Phishing: the nuisance of e-mail scams

Phishing: the nuisance of e-mail scams

Security
Mauro Landolt Mauro Landolt · Head of Communication
Zurich now has its own top-level domain – .zuerich!

Zurich now has its own top-level domain – .zuerich!

Domains
Mauro Landolt Mauro Landolt · Head of Communication
Your own domain – precious, indispensable and worth protecting

Your own domain – precious, indispensable and worth protecting

Domains
Mauro Landolt Mauro Landolt · Head of Communication
Better performance thanks to DNS Anycast

Better performance thanks to DNS Anycast

Domains
Mauro Landolt Mauro Landolt · Head of Communication
Nginx. The web server for high demands

Nginx. The web server for high demands

Hosting & e-mail
Mauro Landolt Mauro Landolt · Head of Communication
Complete control with your Managed Flex Server from Hostpoint

Complete control with your Managed Flex Server from Hostpoint

Hosting & e-mail
Mauro Landolt Mauro Landolt · Head of Communication
New PHP release 7.4 for better security and performance

New PHP release 7.4 for better security and performance

Hosting & e-mail
Mauro Landolt Mauro Landolt · Head of Communication
Google only wants websites with https from now on. Are you ready?

Google only wants websites with https from now on. Are you ready?

Security
Claudius Röllin Claudius Röllin · Co-Founder & CPO
The new EU GDPR: what do website operators need to know?

The new EU GDPR: what do website operators need to know?

Expertise
Claudius Röllin Claudius Röllin · Co-Founder & CPO
Lightning-fast websites with HTTP/2

Lightning-fast websites with HTTP/2

Hosting & e-mail
Hostpoint Hostpoint
Our daily efforts in pursuit of innovation

Our daily efforts in pursuit of innovation

Inside
Hostpoint Hostpoint
Ransomware – the extortionists are coming!

Ransomware – the extortionists are coming!

Security
Hostpoint Hostpoint
Email: the long and windy road to the recipient

Email: the long and windy road to the recipient

Hosting & e-mail
Hostpoint Hostpoint
Tips for choosing the right domain name

Tips for choosing the right domain name

Domains
Hostpoint Hostpoint
SSL certificates: no chance for fraudulent websites

SSL certificates: no chance for fraudulent websites

Security
Hostpoint Hostpoint
How to make your website secure

How to make your website secure

Security
Hostpoint Hostpoint
Subpar security on Swiss websites

Subpar security on Swiss websites

Security
Hostpoint Hostpoint
.swiss is now available for (almost) everyone!

.swiss is now available for (almost) everyone!

Domains
Hostpoint Hostpoint
PHP 7 – The fastest PHP version of all time is here!

PHP 7 – The fastest PHP version of all time is here!

Hosting & e-mail
Hostpoint Hostpoint
FreeSSL: Now everyone can get SSL encryption for free!

FreeSSL: Now everyone can get SSL encryption for free!

Security
Hostpoint Hostpoint
Swiss online shops: new VAT legislation with the EU

Swiss online shops: new VAT legislation with the EU

Websites & shops
Hostpoint Hostpoint
Free hosting usually comes with strings attached.

Free hosting usually comes with strings attached.

Hosting & e-mail
Hostpoint Hostpoint
Migrating e-mail accounts: not always such an easy task

Migrating e-mail accounts: not always such an easy task

Hosting & e-mail
Hostpoint Hostpoint
Google loves backlinks

Google loves backlinks

Expertise
Hostpoint Hostpoint
Obligation to provide an impressum in Switzerland

Obligation to provide an impressum in Switzerland

Expertise
Martin Steiger Martin Steiger · Medienrechtsanwalt
Show more posts
Visualization of an email inbox in a laptop screen with Cloud Office icon. Visualization of an email inbox in a laptop screen with Cloud Office icon.

An e-mail address with your own domain

Discover the new e-mail packages with Cloud Office from Hostpoint. The domain of your choice for your email addresses, generous mailbox and Drive storage, various Office tools and much more.

Set up an e-mail address