Case Studies

The Case for DNSSEC, DANE & Root Key Rollover @ APRICOT 2017

Our colleague Jan Žorž from the Deploy360 team was asked to present during the DNS/DNSSEC sessions during APRICOT 2017 last week, and this provides us with the opportunity to highlight a few of the other presentations there. If you need to make the technical and/or business case for deploying DNSSEC, then you can do worse than check out the excellent Read more…


Deploy360 @ APRICOT 2017

The Deploy360 team will be busy next week at the APRICOT 2017 Conference in Ho Chi Minh City, Vietnam. Aftab Siddiqui and Jan Žorž will be co-chairing the Asia-Pacific BCOP BoF, Jan will be giving two presentations on DNSSEC/DANE and IPv6, whilst Aftab will moderate a panel about the APNIC transfer market. Our colleague Andrei Robachevsky will also be talking Read more…


DNSSEC Algorithm Roll-over

RIPE Labs have just published an interesting article about their experiences of rolling over the algorithm used to sign a DNSSEC zone. The RIPE NCC was one of the first organisations to sign its zones with DNSSEC which meant using RSA/SHA1 as this was the only defined algorithm at the time. In recent years it’s Read more…


Last Week at LACNIC24 and LACNOG in Bogota, Columbia

I went to the LACNIC24 and LACNOG meeting last week in Bogota, Colombia. As usual, the agenda was packed with good presentations, content, and workshops. The 2 LAC BCOP meetings helped move the activity forward in the region. The group is working on a Document Development process proposal and we’re trying to help the initiative Read more…


October 7th, 2015 by | Posted in Case Studies, DANE, DNSSEC, Events | No Comments

Case Study: The Experience of Signing Go6.SI with DNSSEC

Some time ago Matthijs Mekking, one of the authors, maintainers and coders for the OpenDNSSEC project asked me why go6.si domain was not signed. My answer was that I need a short, precise and deployment/operations-oriented document with clearly described steps on how to setup the signing platform, how to add a zone and sign it. Matthijs Read more…


October 30th, 2014 by | Posted in Case Studies, DNSSEC, Tools, Tutorials, Whitepapers | Tags: , | 1 Comment

ION Toronto – Deploying DNSSEC: A .CA Case Study

This week we’ll be highlighting sessions from our last ION Conference in Toronto, Canada. At ION Toronto in November, Jacques Latour from the Canadian Internet Registration Authority (CIRA) gave an interesting talk on the ongoing work to deploy DNSSEC for the .CA ccTLD. From the session abstract: CIRA has completed two phases of a three-phased Read more…


January 22nd, 2014 by | Posted in Case Studies, DNSSEC, Events, ION, Videos | No Comments

Slides – Comcast’s Lessons Learned In Implementing DNSSEC

Comcast DNSSEC presentation

What lessons did Comcast learn in rolling out DNSSEC validation to their 18 million subscribers in the US?  Did they have to make any changes to their network?  What happened as they scaled up their deployment? These were some of the many questions addressed by Comcast’s Chris Griffiths at the ICANN 45 DNSSEC Deployment Workshop Read more…


November 26th, 2012 by | Posted in Case Studies, DNSSEC | No Comments