(844) 442-9462(844) 442-9462Free TrialFree TrialContact SalesContact SalesSign inSign in
Cygna Labs
<b>IPControl</b> Software
IPControl Software

Advanced DDI software for Linux or Windows

<b>Sapphire</b> Appliances
Sapphire Appliances

Secure, multi-platform DDI appliances

<b>DDI</b> Services
DDI Services

Tiered support and managed DDI services

<b>DDI</b> Security
DDI Security

DDI defense-in-depth protections

<b>DNSSEC</b> Appliances
DNSSEC Appliances

Automated DNS integrity and authentication

<b>IPAM</b> Auditor Appliance
IPAM Auditor Appliance

Rich DDI reporting, auditing, and forensics

<b>ImageControl</b> Software
ImageControl Software

Scalable DOCSIS firmware management

<b>Sapphire</b> Automation Appliances
Sapphire Automation Appliances

Drag-and-drop DDI API automation

<b>IPAM</b> Executive Failover Appliances
IPAM Executive Failover Appliances

DDI management resiliency

Products
IT Managers
IT Managers

Keep your network and business running

DevOps Engineers
DevOps Engineers

Insert DDI automation effortlessly

Security Professionals
Security Professionals

Add a DDI defense-in-depth layer

Business Professionals
Business Professionals

Maximize returns with comprehensive DDI

Cloud Architects
Cloud Architects

Consolidate cloud subnet, IP & DNS data

Solutions
Blog
Blog

Intriguing DDI and Compliance posts

Newsroom
Newsroom

Keep up with our blistering news feed

Webinars
Webinars

Educational technology webinars

Events
Events

Come see us at upcoming industry events

Partners
Partners

View our growing partner integrations

Success stories
Success stories

How real businesses accelerate their growth with us

Resources
About us
About us

Learn what makes us great

Leadership
Leadership

Meet our executive team

Careers
Careers

Come join our rapidly growing team

Company
Book a Demo
shield

Strengthen your organization’s cybersecurity posture with software solutions from Cygna Labs

DNSSEC Appliances

In support of our extensive DNS security offerings, DNS Security Extensions (DNSSEC) enable you to publish your namespace such that the validating resolvers can be assured that the data they receive purportedly from you has been indeed published on your DNS servers and that the data was not manipulated en route. In fact, DNSSEC is the only definitive solution identified for dangerous cache poisoning attacks.

DNSSEC, a necessary evil

Unfortunately, DNSSEC configuration and operation requires strong technical expertise not only for initial configuration but for ongoing monitoring and maintenance of signed zone data. Among these tasks are creation of key signing and zone signing keys, signing zone information and rolling keys. The Sapphire Sx20 and Sx10D hardware and virtual appliances from Diamond IP are secure DNSSEC appliances that automate key generation, zone signing, and key rollover based on your policies.

DNSSEC, a necessary evil

Diamond IP automates DNSSEC

The Sx models provide “set and forget” policy operation to automate the setup and ongoing management tasks associated with signed zones. The Sapphire Sx-series appliances can be deployed as standalone authoritative DNS appliances or in a multi-master pair. This intra- or inter-site redundancy enables seamless transitioning of signed zone integrity in the event of a failure of an Sx appliance or its corresponding site. Our unique dual corroboration technology facilitates reliable failover while minimizing flapping and flash key rollovers.

Diamond IP automates DNSSEC

Security with centralized management

IPControl software from Diamond IP provides comprehensive DNS management for your signed and unsigned zones with support of all BIND option parameters, views, all resource record types and much more. Zones can be deployed to the Sapphire hardware or virtual Sx appliances for automated key and signature maintenance. IPControl also enables configuration of DNSSEC validation parameters for your stock BIND servers or Sapphire appliances serving as validating resolvers on behalf of your clients.