Introduction to DNS-OARC

The DNS Operations, Analysis, and Research Center (DNS-OARC) brings together key operators, implementors, and researchers on a trusted platform so they can coordinate responses to attacks and other concerns, share information and learn together.

DNS-OARC has five key functions:

  • Information Sharing. DNS-OARC provides a trusted, shared platform to allow the DNS operations community to share information and data. Stringent confidentiality requirements and secure communications mean that proprietary information can be shared on a bilateral basis.
  • Operational Characterization. As Internet traffic levels continue to grow, the demand on root and other key nameservers will outgrow the current infrastructure: this year's DDoS attack traffic levels will become next year's steady state load. DNS-OARC measures the performance and load of key nameservers and publish statistics on both traffic load and traffic type (including error types).
  • Workshops. DNS-OARC organizes semi-annual workshops where members and the public are invited to give presentations on timely topics relevant to DNS both operations and research.
  • Analysis. Leading researchers and developers provide long-term analysis of DNS performance and post-mortems of attacks so that institutional learning occurs. A well-provisioned system allows members to upload traces and logs, and to perform their own analysis.
  • Tools and Services. As vulnerabilities and DNS problems come to light, DNS-OARC develops publicly available tools and services to assist with highlighting, diagnosing, and remedying such problems.

DNS-OARC participants fall into one or more of the following categories:

  • Operators of root, TLD, or large commercial nameservers who consume DNS technology and produce DNS services.
  • Implementers who produce DNS technology including software, appliances, and network elements such as load balancing hardware.
  • Researchers whose work has a strong DNS emphasis and who need access to trace and log data about the global DNS under both "normal" and "abnormal" conditions.
  • Security Providers whose companies offer products and services that utilize DNS information to improve the security of their customers.

To inquire about membership, or for any other questions, please contact the OARC Admin.

Submitted by wessels on Thu, 2008-07-03 22:40

OARC 2014 AGM Board Election Results

The following candidates were re/elected to the OARC Board for 2-year terms:

  • George Michaelson (APNIC)
  • Ondrej Filip (CZ.NIC)
  • John Crain (ICANN)

OARC welcomes and congratulates the new Board members on their successful election.

We thank the unsuccessful and withdrawn candidates:

  • Don Blumenthal (PIR)

  • Merike Kaeo (IID)
  • Mehmet Akcin (Microsoft)

for their willingness to consider serving on OARC's Board.

We also want to express a special thanks to our outgoing Board members Antoin Verschuren and Matt Pounsett for their years of service and energetic contribution to OARC.

Submitted by keith@ on Mon, 2014-10-13 18:50 categories [ ]

OARC Fall 2014 Workshop (Los Angeles)

DNS-OARC is pleased to announce the agenda for its 2014 Fall Workshop and Member AGM which will take place in Los Angeles, California, USA on the 11th through 13th October.

This will be held in co-operation with the ccNSO Tech Day of the subsequent ICANN51 meeting. The OARC AGM and member-only session will be held on Saturday 11th October, the main workshop on Sunday 12th, and a joint session with ICANN's Tech Day on Monday 13th.

Submitted by keith@ on Wed, 2014-09-24 14:13 categories [ ]

2014 OARC Elections

During the 2014 OARC Annual General Meeting we will be electing three seats on the OARC Board of Directors. The seats becoming available are doing so on the following basis:

  • Existing Board member Antoin Verschuren's (SIDN) two-year term has ended.
    Antoin will not be standing for re-election.
  • Existing Board member Ondrej Filip's (CZ.NIC) two-year term has ended.
    Ondrej will be standing for re-election.
  • Existing Board member John Crain's two-year term has ended. This seat was originally appointed as the Root Operator's representative, but was converted last year to an at-Large elected position, and John is re-standing for election representing ICANN on this new basis.
Submitted by keith on Thu, 2014-09-18 19:59 categories [ ]

Root Zone Archive

With the assistance of its members and friends (especially AFNIC, RIPE, former OARC Secretariat Paul Vixie, and Paul Hoffman) DNS-OARC has assembled a historical archive of the DNS root zone dating back to July 1999. This Root Zone Archive is a part of our larger project, the Zone File Repository.

Root Zone Trends

The following graph shows trends in the contents of the root zone:

Submitted by admin on Wed, 2014-08-20 12:39 categories [ ]

Vacancies at DNS-OARC

As part of OARC's strategic development plan, we will be hiring for a number of positions in 2014/5. These are unique opportunities for independent-minded candidates seeking to develop their experience and skills with a nonprofit organization of critical importance to the future of the Internet. This is a chance to play a key role in growing OARC as a respected, sustainable, autonomous, neutral organization.

Current open positions:

  • None at present

Later in 2015 OARC will be seeking a full-time Software Engineer.

Candidates should submit a Resume/CV and any supporting documents by
email to

Keith Mitchell
OARC President

Submitted by keith on Thu, 2014-07-17 20:38 categories [ ]

DNS Looking Glass Information

There are a number of DNS Looking Glass sites around the Internet that will allow anyone to send a DNS query from that location. Looking Glasses are of particular use in the case of troubleshooting a problem with a DNS zone that is served from an anycasted service. In the event of a problem with the service, the view of a zone can be very different from distant places on the Internet.

Here is a list of some of the known looking glass sites around the Internet:

Submitted by Anonymous on Mon, 2014-05-12 12:45

OARC Spring 2014 Workshop and EGM (Warsaw)

The agenda for DNS-OARC's 2014 Spring Workshop and Member EGM on the 10th and 11th May, in Warsaw, Poland is now available here.

This will be held at the same location the subsequent RIPE68 meeting, and we're grateful to Microsoft and Verisign for being our main sponsors for this workshop.

Our talks include a study of Open Resolvers, on detection of Botnet Domains, and on connection-oriented improvements to DNS security. There's also a review of new IETF work on DNS privacy, and a survey of the Namecoin P2P DNS system. A big thank you to our speakers and programme committee for putting a packed agenda together.

Submitted by keith on Thu, 2014-04-17 23:54 categories [ ]

OARC's TLDmon Service

OARC's TLDmon uses Nagios to monitor operational characteristics of authoritative nameservers for the Root Zone and all Top Level Domains. TLDmon checks for authoritative answers, EDNS support, lame delegations, consistent NS RR sets, open resolvers, expired RRSIGs, matching serial numbers, and TCP support. As the Domain Name System continues its evolution, it becomes increasingly important that these critical nameservers are configured correctly.
Submitted by admin on Sun, 2014-03-23 14:45 categories [ ]

New TLD Applicants Make Major Infrastructure Donation to DNS-OARC

DNS-OARC is pleased to announce we have received a substantial one-off equipment donation from a number of its Members in common with the the New TLD Applicant Group.

This is allowing these and other OARC members to perform independent analysis on OARC's Day in the Life of the Internet (DITL) data-set, to further understand the results of ICANN's " High-Risk Strings Collisions" study.

Submitted by keith on Wed, 2013-09-25 13:47