Category:
Tech matters

Technology, Labs, Standards, LEA/Security, IPv4/IPv6, DNSSEC, Routing

The fragility of transient identifiers

By George Michaelson on 1 Apr 2022

Let’s talk about the ‘Unfortunate History of Transient Numeric Identifiers’.

How to: Detect and prevent common data exfiltration attacks

By Debashis Pal on 31 Mar 2022

Guest Post: Mitigate for APT threats with these best practices for detecting and preventing data exfiltration attacks.

Threat hunting with Yara: The red pill approach

By Vitaly Kamluk on 30 Mar 2022

Guest Post: Learn how to combine Yara with other tools to have full control over the condition validation process.

A first look at DNS over QUIC

By Mike Kosek on 29 Mar 2022

Guest Post: Does DoQ outperform DoT and DoH? Results of the first study on DoQ response times.

DNS topics at IETF 113

By Geoff Huston on 28 Mar 2022

Handling resolution failure, truncated responses, stateful hash-based DNSSEC signatures, and more.

How to properly interpret a traceroute or MTR

By Phil Lavin on 28 Mar 2022

Guest Post: MTR is a useful tool for diagnosing packet loss.

Notes from the IEPG meeting at IETF 113

By Geoff Huston on 25 Mar 2022

IPv6 extension headers, BGPsec crypto, RPKI beacons, and more.

DNSSEC algorithms for TLDs (and everyone else)

By Viktor Dukhovni on 24 Mar 2022

Guest Post: Has the time come to phase out 1,024-bit RSA from the DNSSEC ecosystem?

Threat hunting with Yara: Dealing with wildcard hexadecimal patterns

By Vitaly Kamluk on 23 Mar 2022

Guest Post: Learn how to use Yara’s native hexadecimal pattern definition features to create fast rules with fewer false positives and no alarming nested loops.

What’s going on with certificate revocation?

By Geoff Huston on 22 Mar 2022

Does X.509 certificate revocation work as intended, or even work at all?