When searching for a solution, the Regent University IT team begin testing OpenDNS Enterprise. Right away it was clear that the DNS-based security solution was ideal for scaling to serve the large campus. Unlike the Blue Coat solution the school was previously using, OpenDNS Enterprise doesn’t require hardware or software, so it doesn’t create network bottlenecks, and it’s able to uniquely prevent the proliferation of malware at the university.

As Jonathan Harrell, Director of Network Engineering for Regent University, explains, “With lightweight OpenDNS Enterprise we can now identify and block malware before users even know how to find it. More importantly, we can easily look at a high-level flyover of all of our networks and identify trends before they become problems. That means we’re preventing malware instead of cleaning it up.”

Since setting up OpenDNS Enterprise, the university is reporting significantly easier Internet security management and a malware prevention strategy that saves the IT department time and resources. It’s no wonder that OpenDNS is found on a whopping 50 percent of college campuses in the U.S.

If you’re using OpenDNS at work and want to share your story, Email us.

Now that Summer is right around the corner it’s likely that many of you may have plans to do some traveling. Well, if that’s the case I’m here to make sure you add one more item to your pre-travel checklist: update your computer software.

Wait, what? Why, you ask?

The FBI recently issued a warning to travelers about the possibility that travelers may receive fake and malicious software update messages upon connecting to wireless networks at hotels. While the warning did not provide specific information regarding which hotels, countries, or software were being targeted, it appears the cyber criminals have found a backdoor into the connection process which typically involves a guest opening a web browser, entering in login information, and accepting a terms of service prior to being connected to the Internet.

The fake software update messages are reported to be for popular software that people would recognize and likely have installed on their computers, therefore reducing the likelihood of user suspicion about the notification.

So how can you protect yourself from this type of threat while traveling?

While updating your computer software before leaving on your trip is recommended, it isn’t completely unheard of for developers to release another new update in some cases (usually for a bug fix), a day or two later. As someone who is a proponent of making sure your software is always up-to-date, if you do receive a familiar software update notification while traveling you should go directly to the software developer’s website and download the update directly from them or their trusted partners. This will help ensure your computer’s security.

That being said, if you receive an unfamiliar update notification while traveling and are unsure about it, it is definitely advised to err on the side of caution and ignore it. The FBI is also encouraging people who encounter this to report it to the local FBI office.

Of course, additional security measures such as having up-to-date anti-virus software installed are recommended. Always, always run OpenDNS and make sure your coworkers and family do the same. (OpenDNS Enterprise has industry-leading malware protection.) And if you’re technical and don’t mind a work-in-progress, download the preview of DNSCrypt, which will add both privacy and security when accessing the Internet on public WiFi networks like the ones in hotels and airports.

Editorial note: During April and May, OpenDNS CTO Dan Hubbard will share his thoughts on where security will see the most disruption in the near future in this five-part blog series.

CHANGE #4: Turning BIG DATA into BIG INFORMATION.

“Big Data” is one of the hottest topics in technology today. The term is over used and too-broadly describes anything that represents large amounts of data. Loosely defined, I would say that in order for something to be termed “Big Data” is needs to match the minimum criteria:

* Size: The size or amount of data is too big to be stored and queried in a reasonable way with standard database management tools.
* Type: The format and type of data is not always consistent and has a high likelihood of changing over time.
* Velocity: The data is being created and growing at a rapid rate.

Here at OpenDNS where we focus on security and innovation, we’re just starting to hear about Big Data and how important it’s becoming in the context of security. I believe more important than simply the idea of Big Data and being able to query it through new tools and infrastructure, is the ability to turn Big Data into Big Information.

What’s the difference between Big Data and Big Information? Usability. Big Data might have some value. But Big Information is data that has value to someone. Another thing to note about Big Information, and one that elevates its importance, is that it will become increasingly critical to have systems that are designed for a future which is not known or understood today. We may not even know what problem we are attempting to solve today, but through Big Information may discover it tomorrow.

I see a disruption happening in security when companies start creating Big Information and delivering it in a timely manner. These companies have the potential to change the way we create security solutions. Ultimately Big Data needs to turn into Big Information, a change that will, in turn, give solutions, researchers and interested parties the knowledge to make security better.

You can read more about how I believe that Big Data fits into the future of research in my last blog here.

One of our favorite stories to share (and it’s one we hear often) is when our users set up OpenDNS for their parents. From the high school students who want to protect mom and dad from phishing, moms and dads who want to make sure their kids are safe online at Grandma or Grandpa’s house, and those of you tired of troubleshooting your parents unreliable ISP, OpenDNS users have been setting up the service for their parents en masse.

So, once again inspired by our incredible users, and with Mother’s Day and Father’s Day just around the corner, we’ve made it easier than ever for everyone to give their parents a safer, faster, smarter and more reliable Internet with OpenDNS.

We created this simple site that takes care of the hard work for you. Just give us mom or dad’s email (we’ll never use it for anything other than this purpose) and we’ll send them a personalized message explaining why you’re giving them the gift of a safer Internet by setting up OpenDNS. The page also includes a handy link to router instructions, stories from our team members, and a few pointers for explaining the service to Mom and Dad.

We know it’s not always easy to schedule time if parents don’t live nearby. We learned a great trick from one of our users who set up the service for his parents using a screen sharing tool. There are tons out there, but if you have a favorite we’d love to hear it in the comments. Once you set up OpenDNS for your parents, tell us your stories. Email us and tell us why you helped #SpreadOpenDNS.

OpenDNS CEO David Ulevitch with his parents

This summer Apple is planning to release the next iteration of its operating system, OS X 10.8 or Mountain Lion. In this release, one of the company’s core focuses is security.

While Mac growth has been great for Apple, it has become clear that due to the increased adoption of OS X, malware creators have started to take an interest in developing malware for the Mac. And make no mistake, Apple is well aware of this growing threat.

So how does Apple plan to help stop malware from becoming a problem on the Mac? The answer is: Gatekeeper. Gatekeeper will offer Mac users three distinct security features:

Mac App Store: This setting will only allow you to install and run only apps that are downloaded from the Mac App Store. As a proponent of the Mac App Store, I think this is a great solution for more novice computer users. While not all developers are onboard with submitting their software to the Apple-run store, developer participation in the store is increasing. In fact, a recent report stated that there are now 10,000 applications in the Mac App Store.

Mac App Store and identified developers: This setting is slightly different than the previous one because it allows you to install and run apps from the Mac App Store and apps that have a verified Developer ID. This means you are able to also download applications outside the Mac App Store provided they are signed with an Apple Developer ID. In order to obtain a Developer ID, the developer must be registered for the Mac Developer Program where Apple will assign them a unique ID for their apps. The ID will then be used to verify that the app you downloaded from the Internet has not been tampered with in any way, therefore ensuring its integrity.

Additionally, if you did happen to download an app from the Internet that was not signed with a Developer ID, Gatekeeper will inform you so you can then decide whether or not to install it.

Anywhere This setting will allow you to install all apps from anywhere, just as you can today. In other words, with this setting you are not limited to the Mac App Store or apps only signed by trusted developers, you can download and install anything you want without being bothered.

While Apple would most likely love every Mac user to use the Mac App Store only setting it might not currently be a realistic hope. There are a few reasons why:

1. Apple has several requirements that developers must adhere to in order to be accepted into the Mac App Store. All developers might not want to comply.

2. Certain applications may require additional system accessibility in order to function properly and may not be approved into the Mac App Store (even if developers want to be in the store).

3. Some developers may not be willing to share 30% of their earnings to Apple to be listed in the Mac App Store.

Because of this there will be many users who select one of the other two settings, therefore potentially exposing their computer to malicious software. Gatekeeper is an interesting idea and a good start for Apple, but it’s critical that Apple continues to focus on security as more people make the switch.

In December we delivered a preview of one of the most critical and innovative technologies DNS security has seen. DNSCrypt, available initially only for Mac, works by encrypting all DNS traffic between you and your DNS provider, OpenDNS. That critical path between you and your DNS servers is often referred to as the “last mile.” It’s in this “last mile” that bad things are most likely to happen — snooping, tampering, or even hijacking traffic. Anyone who knows what they’re doing can eavesdrop on your Internet activity and see exactly which domains you are resolving, and in many cases, what websites you’re visiting. Worse, sophisticated attackers can modify responses and redirect you to malicious sites. We have always used various techniques to thwart this, but none as iron-clad as simply encrypting all the communication between you and OpenDNS.

The effect of DNSCrypt is immediate and adds significant privacy and security to your Internet connection, particularly when you’re accessing the Internet on a public WiFi network at a place like a coffee shop or airport. Today DNSCrypt is used by more than 10,000 people

Today we proudly reveal DNSCrypt for Windows. While we’re mostly a Mac and unix shop here at OpenDNS, we care about protecting all users. Since Windows has more than 80% market share around the world we knew we could not ignore the need for DNSCrypt on Windows.

There are a number of reasons why the World needs DNSCrypt, but here are just a few:

• Today’s Internet users no longer access the Internet only at home or at work.
• Users connect to several different networks throughout the day.
• As the DNS and security service powering the most Internet users around the world, we’re focused on inventing solutions that enable security for all the ways that people connect.
• DNSCrypt is a foundation for something much, much greater. We have disrupted the world with our technology and ideas, and we believe You Ain’t Seen Nothing Yet.

Please note that what we’re sharing today is a technology preview. While it’s been tested by OpenDNS engineers and OpenDNS users around the world and the Mac version is today being used by an impressive 10,000+ people, there may still be some bugs. We ask that you give us feedback if you see issues so we can iterate and improve quickly. Those of you who frequent the largest coffee chain in the world will be happy to know we fixed an issue some of you had using DNSCrypt on their Wi-Fi.

Without any further delay, download DNSCrypt today and help improve the state of Internet security, one user at a time.

An all-star team of security minds are coming together to make a movie, and OpenDNS just kicked in funds to help cover production and also host the film’s San Francisco premiere. Why’d we get involved? Simple.

For the amount the world relies on the Internet, the average user knows too little about its dark underbelly. The film, appropriately titled Zero Day — which features everyone’s favorite investigative reporter Brian Krebs — has been granted unprecedented access. From the trailer it appears that includes an all-access pass to the Facebook security team at its Menlo Park, CA headquarters, where Krebs and the filmmakers will see how one of largest websites on the Internet fights crime and fraud.

Hopefully it’s from this vantage point that a very large number of Internet users will learn about how Internet crime works, and how to best protect themselves from it. So much of Internet security is education and awareness. The more we know not to click suspicious links, the less we’re exposed to malware.

The film still needs contributions. It’s being funded through Kickstarter.com. Chip in what you can and help this film come to fruition. $10 gets you a copy of the completed work. $1,000 gets you a “thank you” in the credits. You have 25 days to show your support.

Stay tuned for details on the San Francisco premiere, from which we’ll give all profits to the Electronic Frontier Foundation.

When I reflect on the nearly six years since I launched OpenDNS, I’m proud of many of our milestones and accomplishments. I’m proud of developing innovative ways to use the DNS to disengage malware and botnets. I’m proud of building the first anti-phishing clearinghouse, PhishTank, which today powers anti-phishing protection in your favorite browsers and services. I’m proud of providing the first-ever safer, faster, more reliable alternative to the DNS service that people, businesses and schools tolerate from their ISPs. But most of all, I’m proud to employ world-class engineers, researchers, marketers and people specializing in other business disciplines and am firmly committed to keeping them happy.

Two weeks ago, OpenDNS moved to a brand new office in beautiful San Francisco. Every inch of the space was designed with our passionate team in mind. Everywhere you look there’s space for open, collaborative conversations about how to use the DNS to make the Internet safer and overall better. There’s gorgeous, natural light pouring in through the windows, which, during baseball season, also let in the sounds of the SF Giant’s earning a spot at the World Series. We have sitting desks, standing desks, booths, conference rooms, lounges, kitchen’s and more. It’s a wonderful space.

We thought hard about where people should sit, and ultimately decided that while different departments sit together in their relative areas, often the most smart and innovative ideas are born out of cross-functional conversations. A PR person chatting up an HR person, or a customer support person and a sales person talking about how to improve our service. That’s why the office is peppered with areas for these conversations to happen.

Since 2007 we’ve been growing almost entirely out of the revenue generated by our operating activities. This is an important thing to note for us because we believe building a sustainable business is important to our long-term success. Unlike many other technology companies, we’ve grown the old-fashioned way: only spending the hard-earned money we have in the bank. As we quickly approach our 100th employee, we take pride in knowing that we’ve reached this milestone by having great people building great products our customers love.

Our San Francisco office isn’t the only exciting new space to report. I’m also proud to announce OpenDNS Vancouver, recently opened. We’re hiring in all areas of the company at both offices. If you think you have what it takes to be a part of our winning team we’d love to meet you.

All of this growth and sustainability is fantastic, but even more important is how you, our users, fit in. Not only do you all have an invite to stop by 145 Bluxome Street and say hello, you also have a desk here (with advance notice). The single most critical factor contributing to our success — and consequentially our ability to make the Internet safer, faster, smarter and more reliable for tens of millions of people around the world — is your support and contributions. You’ve shaped every single feature we’ve developed and delivered over the six years we’ve been in business. Through IdeaBank, your comments here on this blog, emails to me at david @ opendns (dot) com and feedback on Twitter and even Facebook, you’ve been helping steer this ship.