• Thursday 5 April 2018 Knowledge bank

    DNSSEC timing: absolute, relative and administrative timestamps

    22 February 2016 DNSSEC has changed the world of the DNS operator in two key respects. First, it has transformed the DNS from a primarily administrative system into a much more complex cryptographic platform (NL) that can be used for a wide variety of new applications (NL). Second, DNSSEC has introduced absolute times to a system that previously used only relative times (TTLs). Furthermore, with DNSSEC, the two timing methods need to interact. In this article, we consider the timing aspects of DNSSEC by reference to the settings in OpenDNSSEC (NL) (in the file /etc/opendnssec/kasp.xml). OpenDNSSEC is the most widely used DNSSEC solution for BIND named, (NL) which in turn is the most popular DNS server.

    Afbeelding van DNSSEC timing: absolute, relative and administrative timestamps
    Read more
  • Tuesday 2 October 2018 About SIDN

    Dutch people don't pay enough attention to smartphone security

    SIDN's Hackman survey highlights unsafe habits of smartphone users in the Netherlands

    Afbeelding van Dutch people don't pay enough attention to smartphone security
    Read more
  • Wednesday 11 April 2018 Knowledge bank

    SIDN acts as intermediary in the transfer of DNSSEC-enabled domains

    Autumn 2012 At present, the security of a DNSSEC-enabled .nl domain has to be disabled before it can be transferred from one registrar to another. That will soon cease to be an option: the security of a transferred domain will always have to remain effective while a transfer is in progress. Technically speaking, continuous security is perfectly viable, but it will require administrative coordination between the releasing registrar and the receiving registrar. The plan is for the .nl domain's operator, SIDN, to act as a portal for communication between registrars. Technically speaking, the transfer of DNSSEC-enabled domains is perfectly viable, but it will require administrative coordination between the releasing registrar and the receiving registrar. At the moment, there are two methods in circulation <> for transferring a domain from one DNS operator to another: the IETF method and the ICANN method. However, the IETF method, devised by SIDN, is expected to prove to be the only workable solution for automated transfers.

    Afbeelding van SIDN acts as intermediary in the transfer of DNSSEC-enabled domains
    Read more