John Dickinson graduated from Nottingham University and obtained his DPhil from Oxford University. He has over 15 years experience working in IT, Including several years as a systems administrator and Internet protocol researcher for Nominet UK where he was part of the team that oversaw the operation of the UK’s ccTLD infrastructure.
He specialises in DNS and DNSSEC. John was the first person to write a DNSSEC signer that used keys stored in an HSM (this code now forms part of NLNetLabs LDNS library). He was closely involved in the design and initial development of OpenDNSSEC and also responsible for adding DNSSEC support to libdkim, part of dkim-milter. He was also one of the first to demonstrate how quickly the 2008 Kaminsy attack on DNS could be performed. More recently he has been involved in developing Hedgehog, was a member of the Root KSK Key Rollover design team and currently a member of RSTEP.
- RFC8901- Specification for deployment models for DNSSEC using multiple DNS providers.
- RFC 8618: Compacted-DNS (C-DNS): A Format for DNS Packet Capture - A DNS specific format for efficient capture of DNS traffic.
- RFC8490: DNS Stateful Operations - Internet Draft proposing a new mechanism for per-session DNS signalling
- RFC7858: The edns-tcp-keepalive EDNS0 Option - defines an EDNS0 option to enable idle timeout management of DNS-over-TCP sessions.
- RFC7766 : DNS Transport over TCP – Implementation Requirements – a bis version of RFC5966, (DNS Transport over TCP – Implementation Requirements)
- RFC7583 : DNSSEC Key Rollover Timing Considerations – a detailed analysis of the timings involved when performing key rollover in DNSSEC.
- dnsxml – A standard XML representation of DNS data – a syntax for encoding DNS Resource Records in XML
- A name server Data Model – Nameserver control protocol (NSCP): a common control protocol for managing name servers.