[Podcast] DNS spoofing is a non-issue if we all do DNSSEC
DNS spoofing is a growing problem that can be stopped with a range of countermeasures or just DNSSEC.
DNS spoofing is a growing problem that can be stopped with a range of countermeasures or just DNSSEC.
Guest Post: Recently approved HTTPS and SVCB record types aim to change a long-standing paradigm.
ROV measurement, DANE Portal, IPv6 extension headers, congestion control, and more topics of interest from IETF 114.
DoQ for authoritative servers, DNS spoofing countermeasures at Google, the cost of DNSSEC validation, and more from DNS-OARC 38.
Guest Post: Many local root queries in China are turning to instances beyond the international gateway, despite there being 16 closer domestic instances.
Guest Post: A comprehensive look at real world deployments and open challenges.
Guest Post: More popular websites are more likely to make changes to their name server records following a DDoS attack on their cloud provider.
Guest Post: Learn how to plot graphs of DNS metrics without altering the DNS packets or touching the DNS software itself.
Guest Post: Zero-knowledge middleboxes let users encrypt their traffic while still enabling operators to enforce policies.
Guest Post: RFC 9199 presents considerations to improve the security, resilience, and performance for large authoritative DNS server operators.