I added a shiny project page for the “Learning Go” book I’m writing.

Errata, new releases and other stuff will get a place there.

For good measure I even added a “Donate” button - we’ll see how to that plays out.

Some older presentations I have given can be found here.

The all deal with DNSSEC - note that most of them have been written a few years ago.

Just came by this, an article I wrote for Cisco (Internet Protocol Journal) back in 2004.

The article

Co-author of RFC 4641 a BCP (Best Current Practice) for DNSSEC operations. This was written together with Olaf Kolkman.

At the time I was employed at NLnet Labs

This RFC gives guidelines on how to setup secure zones in a world with DNSSEC. It also gives pointers for public and private key handling and deals with the key lengths and how to handle key rollovers.

published in 2003

DNSSEC mini HOWTO

By Paul Wouters (paul@xtdnet.nl)

Introduction

This article is a translation of the article “Secure DNS, Het beveiligingen van DNS in de praktijk that appeared in C’T magazine on March 14 2003.

DNSSEC in the .nl zone

The Dutch NIC (SIDN [http://www.domain-registry.nl/]>), The European Regional Internet Registry (RIPE), and NLnetLabs have created the first toplevel secure DNS. The experiment is running its own set of nameservers to guarantee that the experiment will not interfere with the production nameservers. The project started in November of 2002 with the goal of gaining experience in running DNSSEC for a TLD Registry.

This is an older publication (from 2004).

This report gives an outline of the current status of SECREG, the Dutch experiment for introducing DNSSEC in NL.

It is written for SIDN (the people who take care of .nl) and it tries to explain what DNSSEC will mean for a registry.

Downloads are here:

• DNSSEC in NL Postscript
• DNSSEC in NL pdf