The prevalence of DNS over HTTPS
Guest Post: DoH resolver lists are not comprehensive, which makes it difficult for network administrators to entirely block DoH connections.
Tag: DNS
New Machine Learning applications that boost Internet security
Guest Post: New research aims to apply Machine Learning to Internet and DNS security, responsibly.
TLS with DANE
RFC 9102: Trust versus credulity.
Multi-Signer DNSSEC models
Guest Post: Alternative models to zone transfer that can support DNSSEC’s non-standardized features.
DNS cache snooping attacks
Guest Post: How to protect your servers from snooping (or should you even bother)?
DNS talk @ IETF 111
Geoff Huston’s snapshot of current working group activities related to the DNS.
Responses to Mozilla’s Trusted Recursive Resolver public consultation
Guest Post: The consultation closed six months ago but the promised analysis and conclusions have yet to be published, so Andrew Campling did his own.
Adventures in open DNS resolution: How to use threat intelligence for the public good
Guest Post: A lot of groups develop great cybersecurity intelligence. Can we apply that knowledge via public resolvers?
TCP Fast Open? Not so fast!
Guest Post: As TCP becomes more important to DNS, overhead is becoming an issue.
Cache me outside: A new look at DNS cache probing
Guest Post: DNS resolvers that ignore queries from outside their networks can still be queried indirectly through open DNS forwarders in their network.