Securing an RDAP service with OpenID Connect and Keycloak
Guest Post: How integration with OpenID Connect secured the RDAP service of ccTLD .it.
Tag: security
Why are authentication and authorization so difficult?
Guest Post: Where to begin when you’re tasked with selecting a strong authentication solution for your organization.
Stopping DNS-based DDoS attacks in their tracks
Guest Post: Researchers propose a mechanism for DNS servers to independently determine a client’s preferred protocol.
Source Address Validation: Use cases and gap analysis
Guest Post: Learn how Source Address Validation helps mitigate source address spoofing and what the IETF is doing to make it better.
Update your patch management this new year
Guest Post: Reviewing and patching for past vulnerabilities can help to plan for and mitigate future attacks.
DNS malware misuse and current countermeasures
Guest Post: Understanding malware threats towards the DNS is the first step towards mitigating them.
2021 ISIF Asia grant recipients announced
This round of ISIF Asia grantees is the biggest ever, with 22 projects covering 18 economies. Projects range from BGP and cybersecurity through to Internet development.
Data-plane security applications in adversarial settings
Guest Post: High-speed programmable switches are promising but share common design pitfalls that are potentially exploitable.
Investigating hidden root certificates in the wild
Guest Post: Study identifies more than 1 million hidden root certificates operated by 5,000 organizations, including government/enterprise agencies and TLS-interception software.
DNS vulnerability, configuration errors can cause DDoS
Guest Post: An overlooked DNS vulnerability that, when combined with a configuration error, is leading to massive DNS traffic surges.