Observing DNSSEC key life cycles
Guest Post: A new visualization project is shedding light on how regularly DNSSEC are keys being updated.
Tag: DNS
Another DNS OARC meeting
Geoff shares his thoughts on what was being discussed the recent OARConline 35a.
The prevalence of DNS over HTTPS
Guest Post: DoH resolver lists are not comprehensive, which makes it difficult for network administrators to entirely block DoH connections.
New Machine Learning applications that boost Internet security
Guest Post: New research aims to apply Machine Learning to Internet and DNS security, responsibly.
TLS with DANE
RFC 9102: Trust versus credulity.
Multi-Signer DNSSEC models
Guest Post: Alternative models to zone transfer that can support DNSSEC’s non-standardized features.
DNS cache snooping attacks
Guest Post: How to protect your servers from snooping (or should you even bother)?
DNS talk @ IETF 111
Geoff Huston’s snapshot of current working group activities related to the DNS.
Responses to Mozilla’s Trusted Recursive Resolver public consultation
Guest Post: The consultation closed six months ago but the promised analysis and conclusions have yet to be published, so Andrew Campling did his own.
Adventures in open DNS resolution: How to use threat intelligence for the public good
Guest Post: A lot of groups develop great cybersecurity intelligence. Can we apply that knowledge via public resolvers?