RFC 2065:Domain Name System Security Extensions
RFC-Ref

1 - 2 - 8 - A - B - C - D - E - F - G - H - I - K - L - M - N - O - P - Q - R - S - T - U - V - W - Z

signer

Click on the red underlined text to get to the source

2. Overview of the DNS Extensions
... Section 4. It includes the type of the RR(s) being signed, the name of the signer, the time at which the signature was created, the time ...
... Signers Other Than The Zone ...


4. The SIG Resource Record
... RRs of a particular type, class, and name and binds them to a time interval and the signer's domain name. This is done using cryptographic ...
... domain name. This is done using cryptographic techniques and the signer's private key. The signer is frequently the owner of the zone ...
... signer's private key. The signer is frequently the owner of the zone from which the RR originated. ...
... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | key footprint | / +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ signer's name / / / +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ...
... The "signer's name" field is the domain name of the signer generating ...
... The "signer's name" field is the domain name of the signer generating the SIG RR ...
... the RR(s) being authenticated. The signer's name may be compressed with standard DNS name compression ...
... is concatenation, "e" is the private key exponent of the signer, and "n" is the modulus of the signer's public key ...
... private key exponent of the signer, and "n" is the modulus of the signer's public key. 01, FF, and 00 are ...
... RRs are signed by the DNS server originating the response. Although the signer field MUST be the name of the originating server host ...
... There is no particular problem with the signer, covered type, and times. The time fields appears in the form YYYYMMDDHHMMSS where YYYY is the year, the first MM is the month number (01-12), DD ...


5. Non-existent Names and Types
... 19951211100908 ;time signed 21435 ;key footprint foo.tld. ;signer MxFcby9k/yvedMfQgKzhH5er0Mu/vILz45IkskceFGgiWCn/GxHhai6VAuHAoNUz4YoU 1tVfSCSqQYn6//11U6Nld80jEeC8aTrO+KKmCaY= ;signature ...
... NXT RRs with the same name. They can be distinguished by their signers and next domain name fields. Security aware servers ...


7. Operational Considerations
... network and simply cycling it through an off-line signer does not do this. The on-line version could still ...

1 - 2 - 8 - A - B - C - D - E - F - G - H - I - K - L - M - N - O - P - Q - R - S - T - U - V - W - Z

Google
Web
RFC-Ref
RFC-Ref.org
Frontpage
Global Index
RFC
Sister Sites
Chess-Ref.org
Law-Ref.org
InChI.info
Zvon.org