Security Round Up (April-June 2020)
APNIC staff participated in several virtual security-related events, sharing information on topics including RPKI, security attack mitigation and CERT capacity building.
Tag: security
Limiting the power of RPKI authorities
Guest Post: Proposal seeks to change RPKI to a distributed model, preventing unilateral takedown of IP prefixes by Regional Internet Registries.
A brief history of recent advances in IPv6 security, Part I: Addressing
Guest Post: Securing IPv6 Stateless Address Auto-configuration (SLAAC) has been ongoing since 2011.
Notes from OARC 32b
Geoff shares his thoughts from the recent DNS-OARC virtual meeting.
Event Wrap: IAA — Life under lockdown: how to stop heists, hijacks and hostages
Tashi Phuntsho presented on RPKI at the recent Internet Association of Australia online event.
Why don’t we have DNS-security policy for context-full threat protection?
Guest Post: Expecting firewalls and gateways to secure DNS traffic is folly in today’s Internet. Instead, we need a more resilient approach.
IPv6 security on the stack level
Guest Post: What does a ‘secure’ IPv6 stack look like/incorporate?
APNIC launches vulnerability reporting program
APNIC now has a formal process for security researchers to notify us of any bugs or weaknesses.
How far are we from a web with HTTPS everywhere
Guest Post: Website admins have a role to play to make sure HTTPS is deployed everywhere across the web.
Easy BGP Monitoring with BGPalerter
Guest Post: BGPalerter is an open source and self-contained tool that can be used for BGP monitoring.