Improving the resiliency of RPKI Relying Party software
Guest Post: Is it possible to disrupt RPKI Relying Party software by introducing a malicious CA/repository into the tree?
Tag: security
Notes from DNS-OARC 36
Slack’s DNSSEC debacle, NSEC problems, Measuring DNSSEC, and more from DNS-OARC 36.
ICARUS: Beware of flying satellites
Guest Post: How resilient are LEO satellite networks to DDoS attacks?
NPM, encryption, and the challenges ahead: Part 2
Guest Post: Encryption forced NPM vendors to evolve. Part 2 of this series discusses NPM’s evolution, including synthetic testing as one recent advancement.
Notes from RIPE 83
Geoff Huston discusses technical presentations from RIPE 83.
Modern OSes are prone to side-channel-based DNS cache poisoning attacks
Guest Post: Researchers show how SAD DNS attacks allow an off-path attacker to inject malicious DNS records into a DNS cache.
NPM, encryption, and the challenges ahead: Part 1
Guest Post: Encryption and cloud adoption are creating hurdles for network performance monitoring vendors. To survive, solutions must evolve or die.
Adoption of DNS security mechanisms related to ease-of-use, cost
Guest Post: Study shows ease-to-deploy and cost are important factors when it comes to using DNS security mechanisms.
More notes from IETF 112
Geoff Huston on currently active IETF routing security, IPv6, and transport discussions.
Notes from DINR 2021
Presentations at DINR 2021 demonstrated a world of detail and complexity in current DNS research.