Measuring Occurrence of DNSSEC Validation
DNS-OARC Workshop
Toronto, October 14, 2012


Universität Duisburg-Essen
Verteilte Systeme
Verteilte Systeme
Matthäus Wander
1
verteiltesysteme.net
sigok
sigfail
sigfail
sigok
sigok
sigfail
<img src="http://dnssec.vs.uni-due.de/r/a" alt="" height="1" width="1"> <img src="http://dnssec.vs.uni-due.de/r/b" alt="" height="1" width="1">
77.181.135.120 "GET /ok.png?aa53 HTTP/1.1" 200 413
62.53.190.69#22782: query: aa53.sigok.verteiltesysteme.net IN A -ED
http://ID.sigok.verteiltesysteme.net/ok.png?ID
ID
\(:=\) hex(SHA256(client_ip))[0:4]
sigfail
sigok
sigfail
sigok
sigok
sigfail
sigok
sigfail
DNSSEC OK
flag
sigok
|
|
AS | Organization | Count |
---|---|---|
3320 | Deutsche Telekom | 10,675 |
15169 | 8,045 | |
3209 | Vodafone D2 | 3,675 |
13184 | Telefonica Germ. | 1,983 |
36692 | OpenDNS | 1,739 |
4.2k others | 66,297 |