DNSSEC with RSA-4096 keys
We must anticipate changes in computational capacity when choosing an encryption algorithm, but is it relevant to DNSSEC?
Category:
Tech matters
Asia Pacific organizations becoming more proactive in cybersecurity, reducing dwell time
Asia Pacific organizations are getting better and more proactive at detecting compromises in their own network.
Exploring an idea: Can spreading out repositories speed up RPKI?
Guest Post: RPKI updates need to work their way through certificate chains to a handful of ASes. What if they were more spread out?
DNSSEC KSK Ceremony 43
Guest Post: After issues at recent DNSSEC KSK ceremonies what can we expect at the next one?
Can the DNS support encryption without enabling centralization?
Guest Post: Study shows clients can distribute DNS queries across a set of popular recursive resolvers without performance degradation.
DNS security and key ceremonies
Guest Post: What happens at a Root KSK ceremony? What’s at stake, and what could go wrong?
The relevance of heavy hitters and the rise of big-fast flows
Guest Post: Eleven-year study characterizes the rise of heavy hitters and big-fast TCP flows.
Introducing REx: A new approach for the Internet Directory
Say hello to REx! APNIC’s new tool provides comprehensive data on Internet numbers in the Asia Pacific.
Opinion: Learning from Facebook’s mistakes
Opinion: How can the industry learn from this recent outage if reporting is vague?
Weaponizing middleboxes for TCP reflected amplification
Guest Post: Researchers show how middleboxes and censorship infrastructure can be abused to launch reflected DoS amplification attacks over TCP.