IP Fragmentation Avoidance in DNS over UDP.
RFC, January, 2025
Secret Key Transaction Authentication for DNS (TSIG).
RFC, November, 2020
For Good Measure: Nameless Dread.
login Usenix Mag., 2018
Go Static or Go Home: In the end, dynamic systems are simply less secure.
ACM Queue, 2015
Rate-limiting State: The edge of the Internet is an unruly place.
ACM Queue, 2014
Proceedings of the 2014 ACM Workshop on Information Sharing & Collaborative Security, 2014
Extension Mechanisms for DNS (EDNS(0)).
RFC, April, 2013
Bootstrapping Communications into an Anti-Censorship System.
Proceedings of the 2nd USENIX Workshop on Free and Open Communications on the Internet, 2012
Other Uses for Secure DNS.
login Usenix Mag., 2011
NCAP - Distributed Network Capture with Shared Analysis.
Inf. Media Technol., 2011
Arrogance in business planning.
Commun. ACM, 2011
Improving TCP Security with Robust Cookies.
login Usenix Mag., 2009
What DNS Is Not: DNS is many things to many people - perhaps too many things to too many people.
ACM Queue, 2009
Increased DNS forgery resistance through 0x20-bit encoding: security via leet queries.
Proceedings of the 2008 ACM Conference on Computer and Communications Security, 2008
Federated Domain Name Service Using DNS Metazones.
IEICE Trans. Commun., 2006
Implementation and Evaluation of Moderate Parallelism in the BIND9 DNS Server.
Proceedings of the 2006 USENIX Annual Technical Conference, 2006
Preventing Child Neglect in DNSSECbis Using Lookaside Validation (DLV).
IEICE Trans. Commun., 2005
Internet Governance Reloaded.
Proceedings of the 17th Conference on Systems Administration (LISA 2003), 2003
"Who ARE These People?" Internet Governance, Peering, and Legislation.
Proceedings of the 16th Conference on Systems Administration (LISA 2002), 2002
Secret Key Transaction Authentication for DNS (TSIG).
RFC, May, 2000
A DNS RR for specifying the location of services (DNS SRV).
RFC, February, 2000
Hyper Text Caching Protocol (HTCP/0.0).
RFC, January, 2000
Extension Mechanisms for DNS (EDNS0).
RFC, August, 1999
Classless IN-ADDR.ARPA delegation.
RFC, March, 1998
Dynamic Updates in the Domain Name System (DNS UPDATE).
RFC, April, 1997
A DNS RR for specifying the location of services (DNS SRV).
RFC, October, 1996
Operational Criteria for Root Name Servers.
RFC, October, 1996
A Mechanism for Prompt Notification of Zone Changes (DNS NOTIFY).
RFC, August, 1996
A Means for Expressing Location Information in the Domain Name System.
RFC, January, 1996
DNS and BIND Security Issues.
Proceedings of the 5th USENIX Security Symposium, 1995
SENDS, a Tool for Managing Domain Naming and Electronic Mail in a Large Organization.
Proceedings of the 8th Conference on Systems Administration (LISA 1994), 1994