RFCs Related to DNSSEC
来自DNS-WIKI
| RFC编号 | 标题 | 日期 | 状态 | 最新周年纪念 |
|---|---|---|---|---|
| 9364 | DNS Security Extensions (DNSSEC) | February 2023 | Best Current Practice | |
| 3110 | RSA/SHA-1 SIGs and RSA KEYs in the Domain Name System (DNS) | May 2001 | Proposed Standard | 2022-08-15 |
| 4033 | DNS Security Introduction and Requirements | March 2005 | Proposed Standard | 2022-08-15 |
| 4034 | Resource Records for the DNS Security Extensions | March 2005 | Proposed Standard | 2022-08-15 |
| 4035 | Protocol Modifications for the DNS Security Extensions | March 2005 | Proposed Standard | 2022-08-15 |
| 3757 | Domain Name System KEY (DNSKEY) Resource Record (RR) Secure Entry Point (SEP) Flag | April 2004 | Proposed Standard; Obsoleted by RFC 4033, RFC 4034, RFC 4035 | |
| 4470 | Minimally Covering NSEC Records and DNSSEC On-line Signing | April 2006 | Proposed Standard | 2022-08-15 |
| 4509 | Use of SHA-256 in DNSSEC Delegation Signer (DS) Resource Records (RRs) | May 2006 | Proposed Standard | 2022-08-15 |
| 4955 | DNS Security (DNSSEC) Experiments | July 2007 | Proposed Standard | |
| 4986 | Requirements Related to DNS Security (DNSSEC) Trust Anchor Rollover | August 2007 | Informational | |
| 5011 | Automated Updates of DNS Security (DNSSEC) Trust Anchors | September 2007 | Internet Standard | 2022-08-15 |
| 5155 | DNS Security (DNSSEC) Hashed Authenticated Denial of Existence | March 2008 | Proposed Standard | 2022-08-15 |
| 5702 | Use of SHA-2 Algorithms with RSA in DNSKEY and RRSIG Resource Records for DNSSEC | October 2009 | Proposed Standard | 2022-08-15 |
| 6014 | Cryptographic Algorithm Identifier Allocation for DNSSEC | November 2010 | Proposed Standard | |
| 6605 | Elliptic Curve Digital Signature Algorithm (DSA) for DNSSEC | April 2012 | Proposed Standard | 2022-08-15 |
| 6781 | DNSSEC Operational Practices, Version 2 | December 2012 | Informational | |
| 6840 | Clarifications and Implementation Notes for DNS Security (DNSSEC) | February 2013 | Proposed Standard | 2022-08-15 |
| 6944 | Applicability Statement: DNS Security (DNSSEC) DNSKEY Algorithm Implementation Status | April 2013 | Proposed Standard; Obsoleted by RFC 8624 | |
| 7129 | Authenticated Denial of Existence in the DNS | February 2014 | Informational | |
| 7344 | Automating DNSSEC Delegation Trust Maintenance | September 2014 | Proposed Standard | 2022-08-15 |
| 7583 | DNSSEC Key Rollover Timing Considerations | October 2015 | Informational | 2022-08-15 |
| 7958 | DNSSEC Trust Anchor Publication for the Root Zone | August 2016 | Informational | |
| 8027 | DNSSEC Roadblock Avoidance | November 2016 | Best Current Practice | |
| 8078 | Managing DS Records from the Parent via CDS/CDNSKEY | March 2017 | Proposed Standard | 2022-08-15 |
| 8080 | Edwards-Curve Digital Security Algorithm (EdDSA) for DNSSEC | February 2017 | Proposed Standard | 2022-08-15 |
| 8145 | Signaling Trust Anchor Knowledge in DNS Security Extensions (DNSSEC) | April 2017 | Proposed Standard | |
| 8198 | Aggressive Use of DNSSEC-Validated Cache | July 2017 | Proposed Standard | 2022-08-15 |
| 8624 | Algorithm Implementation Requirements and Usage Guidance for DNSSEC | June 2019 | Proposed Standard | 2022-08-15 |
| 9077 | NSEC and NSEC3: TTLs and Aggressive Use | July 2021 | Proposed Standard | |
| 9157 | Revised IANA Considerations for DNSSEC | December 2021 | Proposed Standard | |
| 9276 | Guidance for NSEC3 Parameter Settings | August 2022 | Best Current Practice |
