Date: Thursday, November 15, 2018
Time: Noon (12:00) EDT
Slides: Available here
Audience:: Public [Pb]
We all know the Internet and the "Web" are synonyms as the only protocol you will ever use is HTTP. Wrong! There is a second protocol that is simple and, unlike HTTP, "just works": DNS. But as they say, quiet waters run deep. In this talk, you will learn what is changing about DNS. How DNSSEC, a very effective but much too complex (for the average sysadmin) protocol is being replaced by simpler "DNS Cookies," and how even DNS all of a sudden starts to care about this privacy thing that you heard people talk about in the news. And yes, you will learn how to finally run DNS over HTTP to finally obsolete the last remaining reason for port-based firewalls. We will have fun and excitement with one of the most boring protocols on the internet - and you will never believe what happens on slide 23!
Johannes Ullrich is the Dean of Research at the SANS Technology Institute, where he is currently responsible for the SANS Internet Storm Center (ISC) and the GIAC Gold program. In 2000, he founded DShield.org, which is now the data collection engine behind the ISC. His work with the ISC has been widely recognized, and in 2004, Network World named him one of the 50 most powerful people in the networking industry. Prior to working for SANS, Johannes worked as a lead support engineer for a web development company and as a research physicist. Johannes holds a PhD in physics from SUNY Albany and is based in Jacksonville, Florida. His daily podcast summarizes current security news in a concise format.
 Information Sharing Guidance: TechBursts marked with "MG" are open to members and hosted trusted guests of members. Because access to MG TechBursts require authentication with a REN-ISAC userid and password, guests must view the webcast with the member present. One marked "Pb" are open to the public (link). Ones not marked with MG or Pb are available to members only.