News and updates

Unbound 1.6.2 released

Mon, 24 Apr 2017
Unbound 1.6.2 has a couple of new features and a list of bug fixes. trustanchor.unbound chaos query, response IP actions, stats from shm, --disable-sha1, dnscrypt support, and edns client subnet support merged in.
Unbound website. Direct Download. Changes.

getdns 1.1.0 released

Thu, 13 Apr 2017
Functions for serving DNS. Stubby on board!
Announcement. Direct Download. API specification. Doxygen documentation.

Net::DNS 1.09 released

Fri, 24 Mar 2017

Unbound 1.6.1 released

Tue, 21 Feb 2017
Unbound 1.6.1 has the 2017 root trust anchor in unbound-anchor. The libunbound API has changed slightly, the callback typedef ends in _type. Source IP ratelimiting, log-replies, and the release also has other new features and bug fixes.
Unbound website. Direct Download. Changes.

NSD 4.1.15 released

Thu, 16 Feb 2017
This release contains bugfixes, in serial number parsing and nsec3 hash collision reporting.
NSD project page. Direct Download.

ldns 1.7.0 released

Tue, 20 Dec 2016
Bugfixes and maintenance work, DANE verification delegated to OpenSSL functions, OpenSSL 1.1.0 support
ldns project page. Direct Download. Changes.

DNSSEC trigger 0.13

Thu, 15 Dec 2016
Updated included binaries and installer for OSX.
DNSSEC trigger project page. source. install exe. install dmg. Changes.

Net::DNS::SEC 1.03 released

Fri, 26 Aug 2016

NLnet Labs Annual Report 2015

Thu, 30 June 2016
We are happy to present NLnet Labs Annual report 2015. In it we present an overview of Labs' various activities and describe their impact.
Annual Report 2015 (PDF).

NSD 3.2.22 released

Tue, 14 Jun 2016
Bug fixes accrued before end of support. Note that 3.2.x has end-of-support.
NSD project page. Direct Download.

CDAR Root Stability Study commissioned by ICANN

Thu, 3 Dec 2015
NLnet Labs, SIDN and TNO have been commissioned by ICANN to examine the impact of the new gTLD programme on the root server system.
Press release.

BGP Route Leaks Analysis

Fri, 6 Mar 2015
A route leak is a violation of the policies between the networks involved. In this project, we obtain routing information from differecent sources and make inferences to detect possible route leaks. These potential route leaks have been further investigated on their duration, the type of violation, and the type and origin of network that caused the leak-detection.
MSc. report (PDF).

Akkerhuis selected for DNS Root Zone KSK design team

Thu, 5 Feb 2015
Jaap Akkerhuis from NLnet Labs has been selected for the DNS Root Zone KSK rollover plan design team.
ICANN Announcements.

BGP Evolution Analysis

Thu, 31 Jul 2014
The Internet has been growing rapidly for many years. A logical consequence of the growth trend is the increase in effort to discover reachability and routing information of all the networks. The project investigates the different components which together form the actual update message signal and tries to find a reason behind the growth factor.
MSc. report (PDF).

Measuring the Deployment of DNSSEC over the Internet

Thu, 2 Jul 2014
The deployment of DNSSEC is measured with the RIPE Atlas infrastructure. The results provide new insight on the distribution of DNSSEC support among resolvers, and notably show that around 90% of resolvers are DNSSEC-aware, and about 30% validate answers.
MSc. report (PDF).

Open Data Analysis to Retrieve Sensitive Information Regarding National-Centric Critical Infrastructures

Mon, 3 Feb 2014
Open Data repositories store a variety of information from country governments and private sectors. A concern is that with publishing data, sensitive information can be obtained by visual analytic techniques. The report shows that it is possible to retrieve precise locations where critical infrastructures overlap.
MSc. report (PDF).

Wed Sep 25 2013

© Stichting NLnet Labs

Science Park 400, 1098 XH Amsterdam, The Netherlands

labs@nlnetlabs.nl, subsidised by NLnet and SIDN.