DNSSEC Archives | Page 5 of 20

Notes from DNS-OARC 38

By Geoff Huston on 4 Aug 2022

DoQ for authoritative servers, DNS spoofing countermeasures at Google, the cost of DNSSEC validation, and more from DNS-OARC 38.

Addressing the challenges of modern DNS

By Moritz Müller on 29 Jul 2022

Guest Post: A comprehensive look at real world deployments and open challenges.

[Podcast] Why a resolverless DNS makes sense

By Robbie Mitchell on 26 May 2022

PING E15: Server push, combined with DNSSEC could help make DNS resolvers a thing of the past.

The path to resolverless DNS

By Geoff Huston on 17 May 2022

Making sense of resolverless name resolution.

DNS topics at IETF 113

By Geoff Huston on 28 Mar 2022

Handling resolution failure, truncated responses, stateful hash-based DNSSEC signatures, and more.

DNSSEC algorithms for TLDs (and everyone else)

By Viktor Dukhovni on 24 Mar 2022

Guest Post: Has the time come to phase out 1,024-bit RSA from the DNSSEC ecosystem?

Authenticated bootstrapping of DNSSEC delegations

By Nils Wisiol on 8 Mar 2022

Guest Post: By transferring pre-existing trust from the zone’s DNS operator, a new in-band solution would simplify and secure automation of DNSSEC deployment.

Notes from DNS-OARC 37

By Geoff Huston on 22 Feb 2022

Zone file bug hunting, Adaptive DNSSEC, failure behaviour in the DNS, and more from DNS-OARC 37.

Resurrection of injection attacks

By Philipp Jeitner on 22 Feb 2022

Guest Post: DNS transparency is a gaping hole in Internet security.

Disaster recovery with DNSSEC

By Stefan Ubbink on 14 Feb 2022

Guest Post: How to recover from losing all the keys in your HSMs.