October 16, 2013 archive

Introducing The DNSSEC History Project – Can You Help Complete The Story?

dnssec-history-projectCan you please help us fill in the blanks and complete the story of how DNSSEC came about?  Back in 2010 after the root of DNS was signed with DNSSEC, Steve Crocker sent out an email suggesting that the community should document the history of how DNSSEC came to be. As documented on the “About The DNSSEC History Project” page, Steve said in part:

It’s taken twenty years to reach this point, starting with Steve Bellovin’s demonstration of cache poisoning and the early proposals for adding cryptographic signatures to DNS.  A very large number of people, working in a large number of places, have contributed.  There were false starts, technical challenges, controversies and long hard marches.  The large bulk of this work is not very well documented, and there is no place to go to find anything approximating the full story.

To help, the Internet Society offered a wiki site to collect information and in 2010 a good amount of text was added. You can see the current version at:


In the years since 2010 a bit more text was added and some editing occurred, but quite honestly a great amount of the story is still left untold. A couple of us would now like to go in and capture some of this history before it gets lost. But to do so…


Some of us, such as myself, weren’t involved in the early days of DNSSEC and so we’re left to try to document the story based on what information we can find out there.  If you were involved, we’d love to have to you add in some text.  You can see the main page of the project where the information is being gathered.  We also split out the timeline into its own separate page:


Both of those pages need updates – and the main page needs, in my opinion, to be broken out into some more pages.

If you weren’t involved, but are interested in helping with the project, even just with the editing, we’d also love the assistance. The existing text could use some good editing, and this will continue to be a challenge as we add in more text from multiple people.  There are also any number of documents and events referenced in the main text for which links need to be found and inserted.  I’d also like to see the text cleaned up a bit to be more consistent across sections.

IF YOU WOULD LIKE TO HELP, please send an email message to dnssechistory@isoc.org and we can get you set up with an account for editing the wiki pages. (We’d also ask you to please read the “About” page, too, to understand the project goals.)

The end goal is to chronicle the story of how DNSSEC came to be, in part so that the larger community can remember how it all came together, but also so that developers of future protocols can perhaps gain some insight into how best to develop their protocol from the story of DNSSEC.

Please do join with us and help complete the story!  (Thank you!)

Video: Geoff Huston at RIPE67 – Great Charts On The Global State of IPv6 Deployment

Geoff Huston at RIPE 67Today at RIPE67 in Athens, APNIC’s Geoff Huston gave a great presentation on “Global State of IPv6 Deployment Since IPv6 Launch Day“.  As we’ve mentioned before (related to DNSSEC), Geoff’s team at APNIC is using an innovative system of Flash-based ads running via web ad networks to do all sorts of Internet measurements.  In this RIPE67 presentation, he looks at what they’ve seen with regard to IPv6 deployment all around the world.  His IPv6 measurements are different from those of Google and so it is useful to see results out of another measurement system.

While looking at where IPv6 is being deployed,  he looked at who is deploying IPv6 and pointed to networks like Verizon’s wireless LTE network in the US that now are running over 40% IPv6! Geoff then looked at the performance of IPv6 networks and was pleasantly surprised at what he found.   His conclusion is that IPv6 deployment is definitely happening and the excuses operators give for waiting are going away.

The video of Geoff’s talk is available from RIPE’s website.  Geoff’s slides, full of all sorts of interesting IPv6 charts, are also available.  His talk is about 20 minutes followed by a few minutes of questions.  It’s well worth the time!

What are you waiting for to get IPv6 deployed?  How can we help you?  (Check out our list of IPv6 resources as a place to start.)

Photos: ION Krakow 2013 – See What Happened There!

Missed ION Krakow but curious to see what went on?  We’ve uploaded a set of photos from Krakow to our Flickr account that give a view into what went on that day. Take a look and see what happened… (click/tap the image to go to the full set)

ION Krakow on Flickr

The slides used that day are available from the ION Krakow agenda page and we’ll have audio and video recordings available soon.

And if the photos make you interested in attending one of our ION events, do check out our ION Toronto event coming up on November 11, 2013 – it should be another outstanding event filled with IPv6, DNSSEC and routing resiliency/security info!

P.S. A special thanks to our new director, Chris Grundemann, for taking this set of photos while I was operating our livestream.