RFC 2065:Domain Name System Security Extensions
RFC-Ref

1 - 2 - 8 - A - B - C - D - E - F - G - H - I - K - L - M - N - O - P - Q - R - S - T - U - V - W - Z

domain name

Click on the red underlined text to get to the source

1. Overview of Contents
... This document describes extensions of the Domain Name System (DNS) protocol to support DNS security ...
... DNS security and public key distribution. It assumes that the reader is familiar with the Domain Name System, particularly as described in RFCs 1033, 1034std13 ...


2. Overview of the DNS Extensions
... The Domain Name System (DNS) protocol security extensions provide ...
... Data origin" authentication is not obviously provided for the non-existence of a domain name in a zone or the non-existence of a type for an existing name. This gap is filled by the NXT RR ...
... SIG, if any, at the original CNAME domain name but rather a SIG at the target name. ...


3. The KEY Resource Record
... resource record (RR) is used to document a key that is associated with a Domain Name System (DNS) name. It will be a public key as only public keys ...


4. The SIG Resource Record
... RR) is the fundamental way that data is authenticated in the secure Domain Name System (DNS). As such it is the heart of the security ...
... class, and name and binds them to a time interval and the signer's domain name. This is done using cryptographic techniques and the signer ...
... The "signer's name" field is the domain name of the signer generating the SIG ...
... RR is the RR with domain names (1) fully expanded (no name compression via pointers), (2) all domain ...


5. Non-existent Names and Types
... The RDATA for an NXT RR consists simply of a domain name followed by a bit map. ...
... 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | next domain name / +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | type bit ...
... The domain name may be compressed with standard DNS name compression ...
... network. The size of the bit map can be inferred from the RDLENGTH and the length of the next domain name. ...
... query for the initial NXT associated with the zone name. Using the next domain name RDATA field from that RR ...
... RRs with the same name. They can be distinguished by their signers and next domain name fields. Security aware servers should return the correct NXT ...


6. The AD and CD Bits and How to Resolve Securely
... Retrieving or resolving authentic data from the Domain Name System (DNS) involves starting ...


7. Operational Considerations
... This section discusses a variety of considerations in secure operation of the Domain Name System (DNS) using these protocol extensions. ...


9. Security Considerations
... This document describes technical details of extensions to the Domain Name System (DNS) protocol to provide data integrity and origin ...


10. References
... - Mockapetris, P., "Domain Names - Concepts and Facilities", STD 13, RFC 1034std13, November 1987. ...
... - Mockapetris, P., "Domain Names - Implementation and Specifications", STD 13, RFC 1035std13, November 1987. ...

1 - 2 - 8 - A - B - C - D - E - F - G - H - I - K - L - M - N - O - P - Q - R - S - T - U - V - W - Z

Google
Web
RFC-Ref
RFC-Ref.org
Frontpage
Global Index
RFC
Sister Sites
Chess-Ref.org
Law-Ref.org
InChI.info
Zvon.org