11-Oct-2017 https://indico.dns-oarc.net/event/27/ ... Rootcanary.org project quantifies the quality of DNSSEC ... Abuse Prevention.
(DNS-OARC) is a non-profit membership organisation that seeks to victim
DNS recursive DNS servers
https://www.caida.org/catalog/papers/2020_dns_in_iot/dns_in_iot.pdf
22-May-2018 DNS recursive DNS servers
15-May-2017 DNS-OARC 26 Madrid ... Source: https://www.dns-oarc.net/files/pres/OARC-CENTRtech31.pdf ... Reputation abuse (paypal.user.example.com).
https://github.com/DNS-OARC/dns-violations/blob/master/2017/DVE-2017-0008.md Total number of working hours consumed by project. ~3 years.
Once users enter a domain name for visiting a website DNS resolves the address to an actual Internet Protocol Address of a web server which hosts the website.
27-Oct-2016 data including RSSAC002
08-Mar-2017 data sets including RSSAC002
To better understand the breakages of the DNS protocol To make DNS better To share knowledge For Authoritative DNS implementors to avoid common pitfalls For DNS Resolver implementors to verify they can handle it Nothing sensitive (only public DNS information)
OARC 33 (Sept 2020) DNS Privacy Apps Client vs server •Server side now has many implementations/solutions •Several large resolvers increasing number of ISPs (EDDI) many other services •Client side picture more varied: •Browsers (and other applications ) •Desktop systems •Mobile •Other (Libraries/forwarders/routers) 3
DNS-OARC was conceived as a membership organization where DNS operators network researchers software implementers and others could participate to share data common problems and solutions in a secure environment DNS-OARC has grown to over 100 members including 11 root server operators around 40 TLD operators DNS product and service vendors
4 2 Check My DNS - RPKI This work funded by the ARIN Community Grant Program is now complete and adds visibility of RPKI (Resource Public Key Infrastructure) origin validation checks to OARC’s Check My DNS (CMDNS) testing tool Together with this work major updates to the core of CMDNS were also performed 4 3 New Major dnscap Release
Attendance is free and open to all but pre-registration via the event’s Indico site is required Our online format for now is of shorter more frequent events and OARC32a will focus on some unique findings in DNS operations and traffic as a result of the pandemic
The DNS Violations DVE Repository: https://github com/dns-violations/dns-violations Mailing list: https://lists dns-oarc net/mailman/listinfo/dns-violations A decent website would be nice (we have domain but no web): https://dns-violations generated from DVEs Join the team of the reviewers! Report violations! And report
1 2 dnsperf - DNS-over-HTTPS This ongoing project which is funded by Mozilla Open Source Support (MOSS) program and the Comcast Innovation Fund began in October 2020 and is split up into 3 phases The project aims to add DNS-over-HTTPS support to dnsperf but doing so required additional work to be done beforehand