Search results
Results from the WOW.Com Content Network
Technitium DNS Server [18] [19] is a free, opensource [20] (GPLv3), [21] cross platform, authoritative, caching and recursive DNS server software. It supports DNS-over-TLS, DNS-over-HTTPS, and DNS-over-QUIC encrypted DNS protocols. [22] It also supports DNSSEC signing and validation for RSA and ECDSA algorithms with both NSEC and NSEC3.
DNS over TLS (DoT) is a network security protocol for encrypting and wrapping Domain Name System (DNS) queries and answers via the Transport Layer Security (TLS) protocol. The goal of the method is to increase user privacy and security by preventing eavesdropping and manipulation of DNS data via man-in-the-middle attacks .
The publishing of TLS 1.3 and DTLS 1.3 obsoleted TLS 1.2 and DTLS 1.2. Note that there are known vulnerabilities in SSL 2.0 and SSL 3.0. In 2021, IETF published RFC 8996 also forbidding negotiation of TLS 1.0, TLS 1.1, and DTLS 1.0 due to known vulnerabilities. NIST SP 800-52 requires support of TLS 1.3 by January 2024.
DNSCrypt is a network protocol that authenticates and encrypts Domain Name System (DNS) traffic between the user's computer and recursive name servers.DNSCrypt wraps unmodified DNS traffic between a client and a DNS resolver in a cryptographic construction, preventing eavesdropping and forgery by a man-in-the-middle.
Knot DNS is an open-source authoritative-only server for the Domain Name System.It was created from scratch and is actively developed by CZ.NIC, the .CZ domain registry. The purpose of this project is to supply an alternative open-source implementation of an authoritative DNS server suitable for TLD operators to increase overall security, stability and resiliency of the Domain Name System.
Namebench is an open-source Domain Name System (DNS) benchmark utility by Google, Inc, [1] which is licensed under the Apache License, version 2.0. [2] Namebench runs on Windows, OS X, and Unix. [1] It is available with a graphical user interface as well as a command-line interface. [1] Its purpose is to find the fastest DNS server one could ...
DNS-based Authentication of Named Entities (DANE) is an Internet security protocol to allow X.509 digital certificates, commonly used for Transport Layer Security (TLS), to be bound to domain names using Domain Name System Security Extensions .
Unbound is designed as a set of modular components that incorporate modern features, such as enhanced security validation, Internet Protocol Version 6 (IPv6), and a client resolver application programming interface library as an integral part of the architecture.