DNSSEC Archives | APNIC Blog

[Podcast] Calling time on DNSSEC part 2 of 2

By George Michaelson on 25 Jul 2024

Following on from his last podcast, Geoff explores how to fix the problem in DNSSEC deployment and how this can benefit TLS.

[Podcast] Testing Post Quantum Cryptography DNSSEC

By George Michaelson on 11 Jul 2024

If quantum computing becomes viable, Post Quantum Cryptography (PQC) will be needed to replace RSA and ECC signatures in DNSSEC. How well can today’s DNS system handle PQC methods?

Where did DNSSEC go wrong?

By Edward Lewis on 5 Jul 2024

Guest Post: What lessons can we learn from the development of DNSSEC?

DNS evolution

By Geoff Huston on 1 Jul 2024

The DNS has evolved significantly during the Internet’s lifetime. What’s changed and what’s remained the same?

[Podcast] Calling time on DNSSEC: Part 1 of 2

By George Michaelson on 27 Jun 2024

Geoff Huston discusses the market failure of DNSSEC in deployment.

DNS topics at RIPE 88

By Geoff Huston on 6 Jun 2024

DNSSEC bootstrapping, DELEG update, DNS energy consumption, resolver BCP, and more from RIPE 88.

Calling time on DNSSEC?

By Geoff Huston on 28 May 2024

Should we drop DNSSEC and just move on?

KeyTrap

By Geoff Huston on 12 Mar 2024

Just how ‘devastating’ is the Keytrap vulnerability? How it works, and what the response has been.

KeyTrap algorithmic complexity attacks exploit fundamental design flaw in DNSSEC

By Haya Schulmann on 19 Feb 2024

Guest Post: Researchers uncover and investigate ‘the worst attack on DNS ever discovered’.

A quantum-safe cryptography DNSSEC testbed

By Caspar Schutijser on 16 Feb 2024

Guest Post: Now is the time to prepare for the future of cryptography.