Notes from NDSS DNS Privacy Workshop 2021
ODOH, protocol design tradeoffs and more.
Tag: DNS
Event Wrap: DNS-OARC 34
Geoff Huston presented on DNS Flag Day 2020 at DNS-OARC 34, held online from 4 to 5 March 2020.
Putting DNSSEC signers to the test: Knot vs Bind
APNIC had to migrate to a new DNSSEC signer, so we put our two favourite options to the test. Game on!
Stop spoofed traffic at the door: Destination-side SAV
Guest Post: Roughly half of all ASes fail to filter for spoofed traffic as it enters their network border. A new tool helps admins test their own network in real time.
Notes from DNS-OARC 34
Geoff Huston shares his thoughts from the recent DNS-OARC 34.
DoH the right thing
Opinion: The NSA recently issued some advice on DoH. It wasn’t necessarily bad advice, but it was not well received.
How Chromium reduced Root DNS traffic
Guest Post: Chromium is driving a reduction in DNS root server traffic. Let’s put some numbers to it.
Reduce requests to critical DNS zones with LocalRoot
Guest Post: When an authoritative DNS name server is temporarily unavailable, the ISP cache helps ride out the DNS bumps. Why not pre-cache important information with LocalRoot?
Whac-A-Mole: Six years of DNS spoofing
Guest post: Where does DNS spoofing occur? How often? Is it increasing? Researchers examined six years of data to find out.
New tool to sniff out DNS usage
Guest post: A new tool that uses DNS cache snooping on public DNS resolvers to measure the prevalence of rare applications and domains on the Internet.