Guest Post: The introduction of encrypted DNS has caused a considerable amount of controversy. Mark Nottingham argues that the solution is putting control in the hands of end users.
Are new protocols that seek to enhance personal privacy undermining the use of the public DNS?
Guest Post: What do clients and web servers need to do to support OSCP Must-Staple?
Guest Post: What is the current reliability and accuracy of CA responders, and what do they need to do in order for OCSP Must-Staple to be deployed successfully?
Guest Post: Online Certificate Status Protocol (OCSP) is one of the primary protocols browsers use to communicate with Certificate Authorities to obtain revocation attestations.
Geoff was again in fine form in 2018 with insightful posts on DNS, IPv6, routing, and time.
Guest Post: Simple Mail Transfer Protocol Transport Layer Security Reporting is a new feature included in open source network and security configuration assessment tool.
Guest Post: Study follows the evolution of TLS from 2012 using a dataset of 319.3 billion TLS connections collected from large universities and research centres across North America.
DOH (DNS over HTTPS) and other means to secure the DNS attracted plenty of discussion at the recent DNS-OARC meeting.
The 29th DNS-OARC workshop was a remarkably effective DNS meeting, with a wealth of operational experience and engagement.