DNS Security

Noteworthy

 Over the next few years we should expect to see applications leveraging DNSSEC in ways we cannot imagine now.

 DNSSEC technology standards have been stable and mature since 2007, with only updates, clarifications, and new functionality added since then.

 The movement is on, DNSSEC, ready set go! Just make sure you are ready when you go!

 Some folks have already asked me if DNSSEC could have prevented Twitter.com traffic from being hijacked. In this case, the answer is, "No".

DNS Security / Industry Updates

What's in Your Attack Surface?

The concept of "attack surface" has been batted around in the security community for a long time. At a high-level, we all get the gist of it: the more exposed a system is to attackers (attack surface) the more risk it is probably exposing to those who depend on it, but what does that mean? more»

3 Questions to Ask Your DNS Host About DDoS

Neustar provides UltraDNS and recently dealt with an attack on our network that was massive by industry standards, impacting our customers and even our upstream providers. more»

Afilias Partners With Internet Society to Sponsor Deploy360 ION Conference Series Through 2016

IONs are part of the Internet Society's Deploy360 Programme, which aims to foster the global adoption of key Internet technology standards such as IPv6, DNSSEC, and secure routing protocols. more»

The Latest Internet Plague: Random Subdomain Attacks

DNS DDoS attacks continue, fueled by open DNS proxies. Now they're stressing resolvers and authorities worldwide using pseudo random subdomains.  more»

Nominum Announces Future Ready DNS

Nominum today announces Vantio CacheServe 7, a new software architecture coupled with time-proven Vantio technology maximizing the power of server hardware; letting providers think about DNS in new ways. more»

DotConnectAfrica Delegates Attend the Kenya Internet Governance Forum

The annual forum focused on ICT Synergy and sessions discussing policies enabling access such as improving cost and quality of internet services, Net Neutrality, Cyber security, DNSSEC which has become a major factor in utilizing ICT services. more»

Introducing getdns: a Modern, Extensible, Open Source API for the DNS

At The Next Web, getdns is one of the challenge APIs in a 36-hour Hack Battle. Multiple teams of application coding experts are using getdns to develop innovative applications that leverage the global security infrastructure available through DNS Security Extensions (DNSSEC). more»

24 Million Home Routers Expose ISPs to Massive DNS-Based DDoS Attacks

New research by Nominum, leading DNS and Internet Activity applications provider for Communication Service Providers, today reveals evidence that DNS-based DDoS amplification attacks have significantly increased in the recent months, targeting vulnerable home routers worldwide. more»

Motivated to Solve Problems at Verisign

As the world keeps changing, so do the requirements for products and services and the ways to achieve them most effectively. Our researchers and engineers continue to innovate and adapt to those changes, while also anticipating the next ones. more»

Diversity, Openness and vBSDcon 2013

Diversity is a central design principle of the Domain Name System; diversity is one reason the DNS industry in general, and Verisign in particular, doesn't do everything the same way and in the same place. more»