We have conducted a [field study][1] on post-quantum DNSSEC, involving RIPE ATLAS measurements with around 10,000 probes. Using implementations of PQC signing schemes (Falcon, Dilithium, SPHINCS+, XMSS) in both BIND and PowerDNS, DNS response success and failure rates depending on the signing scheme and other parameters were investigated.
In addition to the above algorithms, we for the...
Phishing on the web is a model of social engineering and an attack
vector for getting access to sensitive and financial data of individ-
uals and corporations. Phishing has been identified as one of the
prime cyber threats in recent years. With the goal to effectively
identifying and combating phishing as early as possible, we present
in this paper a longitudinal analysis of phishing...
The increasing deployment of encrypted DNS has enterprises and service providers wanting to identify clients connecting. Identifying clients allows for approved access and custom policies. In this presentation, we will discuss the latest draft for Client Authentication Recommendations for Encrypted DNS (CARED). We will walk through the reasons for this draft, our recommendations for when and...
