Finally! What I’ve always wanted for tracking the growth of DNSSEC validation by DNS resolvers is some kind of “trend chart” along the lines of Google’s IPv6 Statistics page that could show the growth in DNSSEC validation. At the recent ICANN DNSSEC Workshop in London Geoff Huston of APNIC provided to us that exact kind of chart at the URL:
Sure, the URL is not exactly very typing-friendly, but a quick bookmark can solve that (and we’ve added it to our DNSSEC Statistics page to help in that regard). The chart looks like:
Which shows the nice upward trend. Geoff’s team includes some other tools so that, for instance, you can set the “average interval” to 7 days and get a much smoother line:
This is what I intend to start using now to show the growth in DNSSEC validation as we continue to see further deployment happening within networks around the world.
Speaking of geography, Geoff’s site also has a “world map” view showing DNSSEC validation by country at the URL:
Right now, of course, the map shows a whole lot of red for low levels of DNSSEC validation:
Let’s see if we can make that change! (Deploy DNSSEC-validating resolvers on your network today! )
A cool feature is that below the world map you can get individual trend charts for both various regions and even for individual countries. It also shows the ranking of countries in terms of DNSSEC validation (click/tap the image to get to the page – and then scroll down to see):
Our colleague Jan Žorž may be pleased to see how high his home of Slovenia is ranking!
All of this is based on the measurements Geoff’s team has been doing using Flash-based advertising using Google’s advertising network, something he explained in a recent talk at the RIPE 68 event.
While obviously the various charts show how far we have to go in getting DNSSEC deployed, at least now we have some solid measurement charts we can use to track the progress! Many thanks to Geoff and his team for making this site possible.
We’re looking forward to continuing to see the DNSSEC validation chart grow up and to the right!
P.S. If you want to understand how to get started with DNSSEC, please visit our Start Here page to find resources focused on your type of organization.