DNS Wars
The DNS has evolved from its initial design, but has it evolved for the better?
Tag: TLS
Moving control to the endpoints: Motivations, challenges, and the path forward
Guest Post: The introduction of encrypted DNS has caused a considerable amount of controversy. Mark Nottingham argues that the solution is putting control in the hands of end users.
Opinion: What does DoH really mean for privacy?
Are new protocols that seek to enhance personal privacy undermining the use of the public DNS?
Is the web ready for OCSP Must-Staple?
Guest Post: What do clients and web servers need to do to support OSCP Must-Staple?
Incorporating OCSP Must-Staple into certificates
Guest Post: What is the current reliability and accuracy of CA responders, and what do they need to do in order for OCSP Must-Staple to be deployed successfully?
Overcoming the limitations of OCSP
Guest Post: Online Certificate Status Protocol (OCSP) is one of the primary protocols browsers use to communicate with Certificate Authorities to obtain revocation attestations.
Three of the best: Geoff Huston
Geoff was again in fine form in 2018 with insightful posts on DNS, IPv6, routing, and time.
Introducing SMTP TLS Reporting
Guest Post: Simple Mail Transfer Protocol Transport Layer Security Reporting is a new feature included in open source network and security configuration assessment tool.
Coming of age: a longitudinal study of TLS deployment
Guest Post: Study follows the evolution of TLS from 2012 using a dataset of 319.3 billion TLS connections collected from large universities and research centres across North America.
DNS-OARC 29: Diving into the DNS
DOH (DNS over HTTPS) and other means to secure the DNS attracted plenty of discussion at the recent DNS-OARC meeting.