Stop spoofed traffic at the door: Destination-side SAV
Guest Post: Roughly half of all ASes fail to filter for spoofed traffic as it enters their network border. A new tool helps admins test their own network in real time.
Tag: security
RIPE’s RPKI Validator is being phased out, so what are the other options?
There are plenty of alternatives for RPKI validation.
An analysis of a large-scale HTTPS interception
Guest Post: An investigation into an HTTPS interception attack using a custom root CA.
Event Wrap: IBCAST 2021 Pakistan
Adli Wahid attended IBCAST 2021 where he delivered a presentation on the APNIC Community Honeynet project.
DoH the right thing
Opinion: The NSA recently issued some advice on DoH. It wasn’t necessarily bad advice, but it was not well received.
Discussing the future of RPKI
The recent RIPE NCC Open House discussion on RPKI highlighted global progress and challenges still to solve.
Whac-A-Mole: Six years of DNS spoofing
Guest post: Where does DNS spoofing occur? How often? Is it increasing? Researchers examined six years of data to find out.
Mongolia hits 100% ROA coverage
Guest Post: Mongolia is the second economy in the world to achieve 100% Route Origin Validation (ROV) coverage.
Is WiFi too polite?
Guest Post: Most WiFi devices are designed to acknowledge all packets received — this poses security risks.
Event Wrap: CSIRT.ID virtual seminar
Adli Wahid discussed the role of CSIRTs and ISACS in cyber-resilience at a recent CSIRT.ID virtual seminar.