Stop spoofed traffic at the door: Destination-side SAV
Guest Post: Roughly half of all ASes fail to filter for spoofed traffic as it enters their network border. A new tool helps admins test their own network in real time.
Tag: DNSSEC
DoH the right thing
Opinion: The NSA recently issued some advice on DoH. It wasn’t necessarily bad advice, but it was not well received.
DNSSEC: The long and bumpy road of algorithm deployment
Guest Post: Study finds that replacing outdated cryptographic algorithms can take more than four years.
DNS evolution: Trust, privacy and everything else
Internet infrastructure has evolved a lot since the 1980s. How well is the DNS coping with all that change?
Notes from OARC 32b
Geoff shares his thoughts from the recent DNS-OARC virtual meeting.
Why has DNSSEC increased in some economies and not others?
Guest post: DNSSEC validation is past 25% worldwide but progress has not been spread evenly. Why?
What drives technology adoption in the Internet?
Although the adoption of IPv6 and DNSSEC has been protracted, it hasn’t stopped the Internet evolving.
What can the DNS tell us about the effect of working from home on the Internet?
Stay-at-home measures have had observable impacts on Internet usage, as well as the development of IPv6.
NXNSAttack: upgrade resolvers to stop new kind of random subdomain attack
Guest Post: If you operate your own DNS resolver, no matter what brand it is, upgrade it to the latest version now!
Lessons from deploying DNSSEC in Mongolia
Guest Post: The most essential part of deploying DNSSEC was to understand what it is and how it works.