Follow this step-by-step guide to implement the DNS privacy standards DNS-over-TLS and DNS-over-HTTPS.
Guest Post: Study seeks to understand which transport protocol works best with DNS-over-HTTPS.
DNS transparency, DoH and DoT preferences, and Frag Flag Day – Geoff discusses highlights from DNS-OARC 31.
The DNS has evolved from its initial design, but has it evolved for the better?
Guest Post: The introduction of encrypted DNS has caused a considerable amount of controversy. Mark Nottingham argues that the solution is putting control in the hands of end users.
Are new protocols that seek to enhance personal privacy undermining the use of the public DNS?
Guest Post: What do clients and web servers need to do to support OSCP Must-Staple?
Guest Post: What is the current reliability and accuracy of CA responders, and what do they need to do in order for OCSP Must-Staple to be deployed successfully?
Guest Post: Online Certificate Status Protocol (OCSP) is one of the primary protocols browsers use to communicate with Certificate Authorities to obtain revocation attestations.
Geoff was again in fine form in 2018 with insightful posts on DNS, IPv6, routing, and time.