An Opinion Piece on Internet Security
Opinion: Why has our public key certificate system failed the Internet so badly?
Opinion: Why has our public key certificate system failed the Internet so badly?
Guest Post: Online Certificate Status Protocol (OCSP) is one of the primary protocols browsers use to communicate with Certificate Authorities to obtain revocation attestations.
KINDNS, DNSSEC deployment risks, fourteen years in the life of A-Root, DNS at the IETF, and more from DNS-OARC 39.
Zone file bug hunting, Adaptive DNSSEC, failure behaviour in the DNS, and more from DNS-OARC 37.
Presentations at DINR 2021 demonstrated a world of detail and complexity in current DNS research.
RFC 9102: Trust versus credulity.
Guest Post: There’s a new RPKI visualization tool to add to your toolbox.
Why do RIRs use a trust anchor set of RIR-based 0/0 self-signed certificates?
Geoff Huston shares his thoughts from DNS-OARC 30.
It’s time to look at the data to see what we can learn from the first roll of the root zone’s KSK.