📢 Just in! OpenDNSSEC 2.1.13 is out now! 🚀🔐 Update your systems today and enjoy the bug fixes and enhancements in this release. Check out the announcement at: https://t.co/2SCMNMdve7 #OpenDNSSEC #SoftwareUpdate

I've just released Pkcs11Admin 0.6.0 that adds support for YKCS11 library from @Yubico and improves support for SoftHSMv2 from @opendnssec 🥳

Last week we released OpenDNSSEC 2.1.12. It is a maintenance release that along with fixes in ODS 2.1.11 makes it easy to follow the new RFC 9276 Guidance for NSEC3 Parameter Settings. See for release notes and downloads

Disaster recovery with #DNSSEC. @SIDN's Stefan Ubbink and @BHalderen explore how to recover from losing all the keys in your HSMs https://t.co/NJLd8gzNIy

The latest version of OpenDNSSEC 2.1.10 is available. This release addresses automatic resulting after migrating from 1.4 and some HSM and key management issues. See for release notes https://t.co/QsKz5Eo3hS.

OpenDNSSEC 2.1.9 has been released with two changes that prevent problems with certain HSM configurations, one of which is SoftHSMv2 in database back-end mode. See for more information and downloads https://t.co/ffNsuLEmSu.

There is a release candidate for OpenDNSSEC 2.1.9 available at: https://t.co/GCW520N6WP This release fixes some problems with certain HSM configurations (incl. SoftHSMv2). We already received some positive results, so release will be after a week if no other things come up.

OpenDNSSEC 2.1.8 is available for download. This version increases stability for some corner cases. We strongly recommend that operators migrate to the latest version of ODS. For help https://t.co/l8chlaozNb or direct contact. Information & release notes

OpenDNSSEC 2.1.8 has been released. Don't forget to migrate if you are still running ODS 1.4 (it is EOL!). This version fixes a number of bugs related to the purging of keys, and a few rare but nasty potential crashes. Release notes https://t.co/uqwO5K3Rz8.

OpenDNSSEC 2.1.8 has been released. Don't forget to migrate if you are still running ODS 1.4 (it is EOL!). This version fixes a number of bugs related to the purging of keys, and a few rare but nasty potential crashes. Release notes https://t.co/uqwO5K3Rz8.

DNSSEC Key Ceremony blueprint and toolset, and use-case integration with OpenDNSSEC.

OpenDNSSEC 2.1.7 has just been released, with bug fix in the migration script for migration from 1.4 to 2.1. Also unnecessary signatures during a ZSK roll have been fixed. New: Edward curves, key export by CKA identifier, plus more. See

SoftHSM version 2.6.1 has been released. The SoftHSM 2.6 branch is the current version of SoftHSM and replaces previous releases. The 2.6.1 release mainly improves some compilation issues on specific platforms. For download and bug fix information, see https://t.co/CRyvYHdOuS.

OpenDNSSEC 2.1.6 is released. This release fixes a small memory leak in the enforcer and corrects how keys are displayed. It also includes a bug fix for signing w/ CSK. https://t.co/aPuRr8NrAu

@bortzmeyer @asimonstweets @dnsviz @dnsoarc @ZonemasterNet Yes #RFC6781, section 4.1.4 is the reference (at least mine for the upcoming algorithm rollover at my ccTLD). It implies introducing the RRSIG of the new algorithm before the corresponding DNSSKEY RRSET. Some automated tools like @NLnetLabs @opendnssec can help...

OpenDNSSEC 2.1.5 is available for download. This version addresses a memory leak that was introduced in ODS 2.1.4. For more information see

At the BIND 9 dev meeting in Warsaw, Matthijs discusses the logic for automatic DNSSEC key rollovers.

On October 8th, 2019 we announced end-of-life of OpenDNSSEC 1.4 support. In accordance with our policies, we will only provide essential fixes and support until October 8th, 2020. See for announcement https://t.co/FYnU3NfWrK.

The OpenDNSSEC team published a blog post on recent and future developments of OpenDNSSEC.

It has been a while after the previous release, but OpenDNSSEC 2.1.4 release is available from the download site https://t.co/bMplbfEAjY. Also installations still on the 1.4 release should consider upgrading. Why? See news post