During the development of the DNS Knot Resolver, CZ.NIC Labs have managed to reveal a security flaw that makes it possible to bypass DNSSEC security on F5 load balancers and cause denial of service. These products are being used, for example, in some internet banking applications, including those of Czech banks and public authorities. From the perspective of a user attempting to access an internet banking service, a successful attack exploiting this error would manifest in the browser suddenly reporting an “address not found” error and the service becoming unavailable.
The CZ.NIC Association joined the campaign – Family Offline Week with the subtitle “We are not afraid to be offline together“, which will be held this year from May 11 to May 19, 2019. The purpose of the 4th year of the campaign is not only to celebrate the International Family Day, on May 15, but above all to think about the excessive use of digital technology. The uncontrolled use of mobile phones, tablets and computers not only causes health problems but also worsens interpersonal relationships. Children from early age play with tablets and mobiles, often losing social contact with their peers.
In March, a delegation of experts from five different organizations focused on child safety on the Internet and personal data protection from Bosnia and Herzegovina visited our Association.
The CZ.NIC Association used the Safer Internet Day to introduce its new project, aimed at children´s safety online. The CZ.NIC Association acts as a coordinator of the project that started on 1 January 2019, another partner is the Safety Line, ensuring the operation of a helpline. CZ.NIC will continue operating the Czech national hot-line STOPonline.cz, which received a record number of reports last year.
Last November I had the privilege to visit NIC Costa Rica, our counterpart in that small Central American country. There is a much smaller team working in the local NIC, which takes care of about 28,000 domains for the administration of which our FRED system has been used since 2011.
From the beginning of the development of the Turris MOX router, we have faced a difficult task –how to assemble the modular system so that it does not collapse during handling and, at the same time, make it as user friendly as possible when the user deciders to disassemble and reassemble it. You will be able to find out whether we have accomplished this task or not in the coming weeks when the first MOXes in cases arrive to their users. In the following article, I would like to introduce you to the development and production of the final case of our new product.
Last year brought a record number of incidents to STOPonline.cz. While in 2017 the line received 1,397 reports, in 2018 there was already 2,445 of them, that is 75% more.
A global DNS maintenance is scheduled for February 1, 2019, and authoritative server operators must get ready for it. That is why we dedicate our today’s article to the state of readiness of .CZ domains for changes that will be effective from the beginning of next month.
Less than half a year since the launch of new electronic national ID cards, the Czech Ministry of the Interior provided their detailed description to other Member States and initiated the process leading to their mutual recognition abroad under eIDAS.
One of the less known advantages of the Turris router is the possibility to verify quality of Internet connection, the so-called QoS (Quality of Service), i.e. especially to measure the download and upload speed, IPv6 support, DNSSEC and parameters connected with net neutrality. Such a measuring may serve to analyse the use of the line and to evaluate whether paying a high speed fee is unnecessary. The experience of the Turris router users shows that the majority of their time online is spent in the slowest zone (0-250 kbps). Moreover, even when the majority of data is transferred in higher speed, fast operation may have only a tiny representation from the time´s point of view. Especially those who do not spend a lot of time watching videos pay extra for high speed connection for a relatively short time of use, mainly for the moments it takes to load a page or download and send an e-mail.