Increasing RPKI at a national level
A national RPKI awareness and deployment project being carried out in Colombia has so far increased the economy’s RPKI deployment to over 46%.
A national RPKI awareness and deployment project being carried out in Colombia has so far increased the economy’s RPKI deployment to over 46%.
A more detailed look at the efforts to hide the DNS behind HTTPS.
We don’t have to accept that the DNS has to be a victim of DDoS attacks.
Google has fixed an IPv6 fragmentation handling problem in their Public DNS Service.
Guest Post: How to design and structure BGP Router IDs in IPv6-native networks.
Guest Post: Identifying active IPv6 addresses helps assess deployment, reveal gaps, and detect vulnerable devices. Subnet-Router Anycast (SRA) probing removes the need for prior knowledge of address allocation.
Job Snijders discusses the new ‘Erik’ protocol for faster RPKI repository synchronization.
Guest Post: “RADIUS is the protocol that will never die”. So given that RADIUS is staying, what do we need to do to make it secure for the next 30 years?
Guest Post: Many BGP route leaks flagged by automated systems are short-lived artifacts of normal convergence. Doug Madory draws on Cloudflare Radar, RouteViews, and Jared Mauch’s leak detector to show how these ‘ephemeral leaks’ occur, why they rarely disrupt traffic, and why they still matter for routing security.
Geoff Huston discusses the CIDR Report, a 30-year-long series of data about who is sending excess data in BGP. Does the CIDR Report still hold value?