Notes from DINR 2021
Presentations at DINR 2021 demonstrated a world of detail and complexity in current DNS research.
Tag: measurement
Insights from operating an IP Exchange Provider
Guest Post: Study provides first analysis into the operations of a real-world IP Exchange Provider with a large platform serving customers in 19 economies.
Vulnerabilities show why STARTTLS should be avoided if possible
Guest Post: Study finds more than 40 STARTTLS-related security flaws in many different software products, both client-side and server-side.
RSA vs ECDSA for DNSSEC
Measuring whether we should use ECDSA.
ALPACA attack: Analysing and mitigating cracks in TLS authentication
Guest Post: Study shows adding a TLS-protected email or FTP server to a network can enable cookie-stealing or cross-site scripting attacks against web servers in the same network.
DNS-over-TCP considered vulnerable
Guest Post: There are several ways attackers can force TCP to fragment for inclusion in IP fragmentation attacks.
CCID5: Evaluating BBR for Datagram Congestion Control Protocol
Guest Post: BBR for DCCP reduces latency in multi-path scenarios providing stability to carry TCP streams on top of CCID5 controlled DCCP tunnels.
Mobile phone capabilities are key to improving connectivity in developing economies
Guest Post: Improving network performance has 3x greater effect on high-end phones than low-end phones.
Caching is key to interpreting root DNS anycast performance
Guest Post: Context is everything when it comes to assessing anycast.
Can the DNS support encryption without enabling centralization?
Guest Post: Study shows clients can distribute DNS queries across a set of popular recursive resolvers without performance degradation.