Strict Transport Security vs. HTTPS Resource Records: the showdown
Guest Post: HTTPS RRs and STS look similar but there are subtle differences in the threat models and deployment tradeoffs of each.
Tag: security
APNIC now supports RFC-aligned ‘publish in parent’ self-hosted RPKI
APNIC’s RPKI publication service now supports the RFC 8181-aligned publication protocol and Krill system.
How to use blocklists effectively
Guest post: Domain Name System Blocklists have their own specific advantages for inbox protection.
DNSBLs for email filtering – an introduction
Guest post: If you run your own email infrastructure you will need content filtering, so get up to speed on Domain Name System Blocklists.
Event Wrap: 2020 FIRST & AfricaCERT Virtual Symposium for Africa and Arab Regions
Adli Wahid moderated a panel discussion at the 2020 FIRST & AfricaCERT Virtual Symposium for Africa and Arab Regions, held online from 21 to 23 October 2020.
Is outsourcing email always the best option?
Guest post: Between data breaches and problems with third-party management, there are compelling reasons for a DIY email approach.
Transport protocols in the age of In-Network Computing
Guest Post: In-Network Computing adds a new dimension to end-to-end communication by encouraging packet modifications.
An update on developments with DNS-over-HTTPS
Guest Post: There’s been a fair amount of progress made in the realm of DoH over the 12 months but equally more work to be done.
RPKI Q&A — Why don’t we outsource validation?
The third is a series of posts by Geoff Huston answering questions on RPKI.
Application firewall coming to Linux devices near you
Guest Post: The Linux Application Firewall Project aims to create a simple and intuitive application that can be used by non-IT people.