The High Assurance Domain (HAD) project was created to foster development and deployment of new network security technologies to increase trust in online communications. To measure the update of these new technologies, regular network scans are performed to look for security artifacts that indicate that these technologies are being deployed for a given DNS zone.
The test tool takes a list of zone names as input and performs a series of tests for certain security artifacts in the zone or particular services. The majority of these tests are based on DNS queries. The results of the tests are broken down by service (e.g. DNS, email, etc.) with multiple tests per service. The individual tests and presentation of results are detailed below.
The HAD monitor methodologies page describes the tests and displayed results in greater detail.
Questions or comments should be sent to the HAD pilot admin
NIST is an agency of the U.S. Department of Commerce.
Date created 08/03/2016. Last updated 03/20/2017.