• Rolling, Rolling, Rolling...

    Rolling, Rolling, Rolling...

    Most probably by now you are tired of all the talk about rolling the root KSK. Yes, we are too! So, today we are not going to talk about that one.

  • The renaming of .nu

    The renaming of .nu

    No, of course we won't change the name of the TLD, just the hostname of some of the name servers serving the .nu zone.

  • server

    .SE KSK Algorithm Rollover

    At The Swedish Internet Foundation we are very security concious. We were the first TLD in the world to sign their zone with DNSSEC. Being on the forefront of things is a nice feeling, but sometimes you get to feel the pain of it. Having signed so early means that at the time there was only one algorithm to use, RSA-SHA1. The security of SHA1 has been discussed in the community for some time now and even though there is no need for panic, there are more secure alternatives available today.

  • Kretskort

    Packet size and name server authorative zone

    As preparation for the changing of keys used in the .se zone I have done some tests about packet sizes with different key sizes and algorithms. Currently the .se zone is signed by a 2048 bit Key Signing Key (KSK) and a 1024 bit Zone Signing Key (ZSK) both in RSA-SHA1 format.

  • Audi med registreringsskylt med texten "ANYCAST".

    Monitoring of IIS Anycast

    In January 2017 The Swedish Internet Foundation started a new service "IIS Anycast". We offer our registrars a secondary DNS. We do this in cooperation with CIRA (the Canadian ccTLD Registry). Our secondary DNS is a DNS anycast network.

  • Man står med armarna i kors och har en svart tröja med texten "DNSSEC been there done that".

    Summer fun with a DNS resolver

    On my way back home from the IETF93 meeting in Prague I decided to do a small summer project. For a long time I have wanted to run my own DNS resolver. Lately I had considered to run it on my Synology NAS. But my NAS is already stretched by all the applications running. So I decided to use one of my Raspberry Pi's to do the job. Now, after some runs of the washing machine, I am ready to go.

  • Tangenten ja.

    New domain names for people around the world

    Extending domain names and TLDs with other letters and characters beyond a-z has been possible since 2003. Mats Dufberg dives into the world of Internationalized domain names, and explains how Arabic, Chinese and Cyrillic is able to function on the web.

  • DNS' best friends

    Money for internet improvement projects

    In addition to investments financed through the Internet Fund, The Swedish Internet Foundation has also recently chosen to support two important projects. The names of these are Cryptech and CeroWRT, and we think that both are important for the future of the internet.

  • Två sticklingar med rötter

    Meet our new tool - Zonemaster

    Together with colleagues at our French counterpart Afnic, we at The Swedish Internet Foundation have developed a continuation to DNSCheck. Zonemaster is a program that helps control how well the DNS service works for a domain.

Previous page page 3 of 3