Opinion: Why has our public key certificate system failed the Internet so badly?
Guest Post: Retiring the DNS special query type ‘ANY’ is anything but easy.
What happens when a safe containing the devices to facilitate the Root Signing Ceremony doesn’t open?
Over the past year, DNSSEC validation has rallied. Geoff Huston looks at what is behind the rise.
Follow this step-by-step guide to implement the DNS privacy standards DNS-over-TLS and DNS-over-HTTPS.
Guest Post: Study looks at why DNSSEC deployment remains so slow (and hard) in CDNs.
Guest Post: Study seeks to measure the effectiveness of encrypting the DNS for the purpose of privacy.
Guest Post: The SHAmbles prefix collision attack against SHA-1 offers a new way for attackers to spook the DNS despite DNSSEC.
Guest Post: Part of the DoH-related conflicts seem to come from a different understanding of what the DNS is and what it is meant to do.
Review 2019 through Geoff Huston’s eyes, with three of his best posts from the year past.