DNS Security

DNS Security / Most Viewed

The Domain Name System: A Cryptographer’s Perspective

Jan 11, 2021

As one of the earliest protocols in the internet, the DNS emerged in an era in which today's global network was still an experiment. Security was not a primary consideration then, and the design of the DNS, like other parts of the internet of the day, did not have cryptography built in. Today, cryptography is part of almost every protocol, including the DNS. And from a cryptographer's perspective, as I described in my talk at last year's International Cryptographic Module Conference (ICMC20), there's so much more to the story than just encryption. more

When You Hear “Security,” Think “National Sovereignty”

Jul 14, 2009

These days you can hardly talk about Internet governance without hearing about security. DNSSEC is a hot issue, ICANN's new president is a cyber-security expert, and cyberattacks seem to be a daily occurrence.
This reflects a larger shift in US policy. Like the Bush administration before it, the Obama administration is making security a high priority for the US. Only now the emphasis is on security in cyberspace. The outlines of the new policy were published in the recent US Cyberspace Policy Review, which even recommends a cyber security office directly in the White House. more

Afilias and Neustar to Collaborate With ISC on DNS Security Initiative

Aug 11, 2009

Internet Systems Consortium (ISC) has announced that it is working with Afilias and Neustar, Inc. in the effort to support ISC's DNSSEC Look-aside Validation (DLV) registry by providing secondary DNS service for the DLV zone. DLV is a mechanism that provides many of the benefits of DNSSEC (short for DNS Security Extensions), enabling domain holders to secure their domain information today in advance of broader DNSSEC deployment and adoption. "Adding Afilias and Neustar as secondary DNS providers for the DLV zone demonstrates our collective understanding that DLV is a vitally important production service bigger than any single provider in the same way that there are 13 root server operators, not just one." more

Call for Participation - ICANN DNSSEC Workshop at ICANN63 Barcelona

Sep 06, 2018

Do you have a great idea about DNSSEC or DANE that you'd like to share with the wider community? If so, and you're planning to be in Barcelona, Spain for ICANN63 in October 2018, submit a proposal to present your idea at the DNSSEC Workshop! Send a brief (1-2 sentence) description of your proposed presentation to [email protected] by Friday, 07 September 2018. more

Survey Finds “Complexity” as Most Common Challenge in Deploying DNSSEC

May 28, 2009

According to a recent survey conducted by the European Network and Information Security Agency (ENISA), 78% of service providers in Europe have plans to deploy DNSSEC within the next 3 years. On the other hand, the study also found 22% have no plans to deploy DNSSEC in the next 3 years. more

Industry Updates

Rounding Up the DNS Traces of RA World Ransomware

Tempering Tax Season Troubles with DNS Intel

Decrypting the Inner DNS Workings of EncryptHub

Tracing the DNS Footprints of REF7707

Igniting a DNS Spark to Investigate the Inner Workings of SparkCat

DNS Deep Diving Into 2025’s Up and Coming Ransomware Families

A DNS Investigation of SEO Manipulation via Bad Seed BadIIS

Malicious Ads Targeting Advertisers in the DNS Spotlight

Sneaking a Peek into the Inner DNS Workings of Sneaky 2FA

Unloading MintsLoader IoCs Using DNS Intelligence

DNS Spotlight: Rockstar2FA Shuts Down, FlowerStorm Starts Up

DNS Deep Dive: Peeking into Back Doors to Abandoned but Live Backdoors

DNS Insights on a Free Form Builder Service Phishing Campaign

More Signs of the more_eggs Backdoor Found in the DNS

Illuminating Lumma Stealer DNS Facts and Findings

View More