How RFC 9691 improves key rollover in RPKI Trust Anchors
New support for key transitions will give RIRs greater flexibility and improve long-term resilience of the RPKI.
Category:
Tech matters
Bootstrapping HTTP/1.1, HTTP/2, and HTTP/3
Guest Post: A packet-level tour through redirects, TLS negotiation, and protocol discovery.
A first look at the PROXY protocol and its security implications
Guest Post: Studying PROXY protocol usage at Internet scale and the security impact of its misconfigurations.
How Let’s Encrypt reduced the impact of zombie clients
Guest Post: A new rate limit has significantly reduced the load on Let’s Encrypt’s infrastructure.
[Podcast] Downloading the root
Geoff Huston discusses the DNS root zone and how query load at the root could be reduced by using trusted local copies of the zone.
Ossification and the Internet
Why IP, transport, routing, and DNS protocols can harden and what that means for the future of the public network.
The scourge of excessive AS-SETs
Guest Post: Many AS-SETs have grown so large they effectively whitelist most of the routing table, defeating their purpose. How are AS-SETs actually used for filtering, and what can be done when they get too big?
Is ‘Postel’s law’ causing protocol ‘ossification’?
A recent routing incident sparks renewed debate on protocol design, error handling, and whether Postel’s law is helping or hurting the Internet’s evolution.
Fiji’s Strengthening Internet infrastructure
Fiji stands at a pivotal point in its digital journey, with strong foundations and a clear vision.
A QUIC progress report
Reviewing QUIC’s design motivations, protocol innovations, and current adoption across the public Internet.