service

Click on the red underlined text to get to the source

... DNS) protocol security extensions provide three distinct services: key distribution as described in Section 2.2 below, data origin authentication ...

... Services Not Provided ...

... confidentiality for queries or responses. (This service may be available via IPSEC [RFC1825 ...

... DNS data origin authentication and other security services. ...

... resource type and, as a practical matter, the key resource type needed for key distribution. This service can be supported by existing resolver and server implementations so long as they can support the additional resource types (see Section 8). The one ...

... The data origin authentication service described above protects retrieved resource records but provides no protection for DNS ...

... IP or other security for a user level service such a telnet, ftp, rlogin, etc. ...

... DNS transaction authentication service if the owner name is a DNS server host. It ...

... Implementers might expect the above SHOULD to be a MUST. However, local policy or the calling application may not require the security services. 3. If SIG ...

... security aware resolvers or security aware resolvers requesting service by having the CD bit clear, security ...

... return Pending data to security aware resolvers requesting the service by clearing the AD bit in the response. The AD bit MUST NOT ...