Specification of DNS over Dedicated QUIC Connections

While a lot of people debate DNS-over-https (and it’s dependencies), IETF has a specification for DNS-over-QUIC on it’s standards track.

This document describes the use of QUIC to provide transport privacy for DNS. The encryption provided by QUIC has similar properties to that provided by TLS, while QUIC transport eliminates the head-of-line blocking issues inherent with TCP and provides more efficient error corrections than UDP. DNS over QUIC (DNS/QUIC) has privacy properties similar to DNS over TLS specified in RFC7858, and performance similar to classic DNS over UDP.

Source: Specification of DNS over Dedicated QUIC Connections

IETF93 DOTS Recording

Recording from the IETF “DDoS Open Threat Signaling” (DOTS) Working Group meeting during IETF93, taking place July 19-24 in Prague. The agenda of the WG is to develop a standards
based approach for the realtime signaling of DDoS related telemetry and threat handling requests and data between elements concerned with DDoS attack detection, classification, traceback, and mitigation.

Quelle: Watch Recording: IETF93 DOTS (chapter 1)

Software Defined Networks

For the most of my career I spent time configuring TCP stacks, IP ACLs, firewall rules and layer2 links. I worked with devices of multiple vendors, pulled together hubs, switches, routers and packet filters, used hardware and software tools to find why an application won’t connect to a remore peer. For the most time. Still, these days are over, since I’ve choosen a career working with customers a few years back. And while the interesst in techology is still there, the desire to dive into cabling and repetitive flipping switches has become very low over the years. Just as everything else in computing has been consumerized by the cloud, the network itself is still manual work (if done properly).

Software-Defined Networks may be here to overcome this perpective.
Continue reading Software Defined Networks