Introduction to DNS-OARC

The DNS Operations, Analysis, and Research Center (DNS-OARC) brings together key operators, implementors, and researchers on a trusted platform so they can coordinate responses to attacks and other concerns, share information and learn together.

DNS-OARC has five key functions:

  • Information Sharing. DNS-OARC provides a trusted, shared platform to allow the DNS operations community to share information and data. Stringent confidentiality requirements and secure communications mean that proprietary information can be shared on a bilateral basis.
  • Operational Characterization. As Internet traffic levels continue to grow, the demand on root and other key nameservers will outgrow the current infrastructure: this year's DDoS attack traffic levels will become next year's steady state load. DNS-OARC measures the performance and load of key nameservers and publish statistics on both traffic load and traffic type (including error types).
  • Workshops. DNS-OARC organizes semi-annual workshops where members and the public are invited to give presentations on timely topics relevant to DNS both operations and research.
  • Analysis. Leading researchers and developers provide long-term analysis of DNS performance and post-mortems of attacks so that institutional learning occurs. A well-provisioned system allows members to upload traces and logs, and to perform their own analysis.
  • Tools and Services. As vulnerabilities and DNS problems come to light, DNS-OARC develops publicly available tools and services to assist with highlighting, diagnosing, and remedying such problems.

DNS-OARC participants fall into one or more of the following categories:

  • Operators of root, TLD, or large commercial nameservers who consume DNS technology and produce DNS services.
  • Implementers who produce DNS technology including software, appliances, and network elements such as load balancing hardware.
  • Researchers whose work has a strong DNS emphasis and who need access to trace and log data about the global DNS under both "normal" and "abnormal" conditions.
  • Security Providers whose companies offer products and services that utilize DNS information to improve the security of their customers.

To inquire about membership, or for any other questions, please contact the OARC Admin.

Submitted by wessels on Thu, 2008-07-03 22:40.

OARC Spring 2014 Workshop and EGM (Warsaw)

The agenda for DNS-OARC's 2014 Spring Workshop and Member EGM on the 10th and 11th May, in Warsaw, Poland is now available here.

This will be held at the same location the subsequent RIPE68 meeting, and we're grateful to Microsoft and Verisign for being our main sponsors for this workshop.

Our talks include a study of Open Resolvers, on detection of Botnet Domains, and on connection-oriented improvements to DNS security. There's also a review of new IETF work on DNS privacy, and a survey of the Namecoin P2P DNS system. A big thank you to our speakers and programme committee for putting a packed agenda together.

Submitted by keith on Thu, 2014-04-17 23:54. categories [ ]

OARC's TLDmon Service

OARC's TLDmon uses Nagios to monitor operational characteristics of authoritative nameservers for the Root Zone and all Top Level Domains. TLDmon checks for authoritative answers, EDNS support, lame delegations, consistent NS RR sets, open resolvers, expired RRSIGs, matching serial numbers, and TCP support. As the Domain Name System continues its evolution, it becomes increasingly important that these critical nameservers are configured correctly.

Submitted by admin on Sun, 2014-03-23 14:45. categories [ ]

Root Zone Archive

With the assistance of its members and friends (especially AFNIC, RIPE, former OARC Secretariat Paul Vixie, and Paul Hoffman) DNS-OARC has assembled a historical archive of the DNS root zone dating back to July 1999. This Root Zone Archive is a part of our larger project, the Zone File Repository.

Root Zone Trends

The following graph shows trends in the contents of the root zone:


Submitted by admin on Sat, 2014-02-22 15:23. categories [ ]

OARC Degraded Service

Update: As of 06:00 PST 2014-01-28, we believe all OARC services have been fully restored. Please contact us if you see anything not working as expected.

The failure of a power supply distribution component at our Redwood City location caused a number of OARC servers to crash late on Sunday 26th January. As a consequence, various OARC services are unavailable until we can restore these servers. The affected servers have been moved to alternate power supplies until we are able to repair/replace the supply to the impacted rack, and we are working to restore services from backups, with a current estimate of Wed/Thu 29th/30th Jan to complete this.

The following services are affected

  • portal.dns-oarc.net, indico.dns-oarc.net
Submitted by keith on Mon, 2014-01-27 20:39. categories [ ]

OARC 2013 AGM Board Election Results

The following candidates were elected to the OARC Board for 2-year terms:

  • Chris Griffiths (Dyn)
  • Matt Pounsett (Afilias)
  • Duane Wessels (Verisign)

OARC welcomes and congratulates the new Board members on their successful election.

We thank the unsuccessful candidates:

  • Wayne Maclaurin (Demand Media/eNom)
  • Bill Manning (ISI)
  • Kevin Thomas (Minds and Machines)

for their willingness to stand for election.

OARC wishes to express its significant gratitude to the outgoing Board members Peter Koch and Suzanne Woolf for their long-standing service.

Submitted by keith@ on Sun, 2013-10-06 22:53.

2013 OARC Elections

During the 2013 OARC Annual General Meeting we will be electing potentially three seats on the OARC Board of Directors. The seats becoming available are doing so on the following basis:

  • Existing Board member Peter Koch's (DENIC) two-year term has ended
  • Existing Board member Matt Pounsett's (Afilias) two-year term has ended.
  • A proposed resolution will convert the appointed Board seat currently reserved for the Secretariat Director, held by Suzanne Woolf (ISC) to an elected at-Large seat.
Submitted by keith@ on Mon, 2013-09-30 21:15. categories [ ]

New TLD Applicants Make Major Infrastructure Donation to DNS-OARC



DNS-OARC is pleased to announce we have received a substantial one-off equipment donation from a number of its Members in common with the the New TLD Applicant Group.


This is allowing these and other OARC members to perform independent analysis on OARC's Day in the Life of the Internet (DITL) data-set, to further understand the results of ICANN's " High-Risk Strings Collisions" study.

Submitted by keith on Wed, 2013-09-25 13:47.

ICANN Makes Major Infrastructure Donation to DNS-OARC


DNS-OARC is pleased to announce we have received a substantial one-off equipment donation from the Internet Corporation for Assigned Names and Numbers (ICANN).

This is allowing OARC members to perform analysis on OARC's Day in the Life of the Internet (DITL) data-set, to gain a deeper understanding of the results of ICANN's " High-Risk Strings Collisions" study.

Submitted by keith on Wed, 2013-09-25 13:44. categories [ ]

DNS-OARC Supports High-Risks Strings Collisions Studies


Submitted by keith on Wed, 2013-09-25 13:26. categories [ ]