DNS data
Click on the red underlined text to get to the source
... The DNS security extensions provide origin authentication and
integrity protection for DNS data, as well as a means of public key
distribution. These extensions do not provide confidentiality ...
... DNSKEY RR whose corresponding
private key signs the desired DNS data. For example, the root
DNSKEY ...
... authentication and integrity assurance services for DNS data,
including mechanisms for authenticated denial of existence of DNS
data ...
... DNS data,
including mechanisms for authenticated denial of existence of DNS
data. These mechanisms are described below.
These mechanisms require changes to the DNS ...
... DNS security extensions provide data and origin authentication
for DNS data. The mechanisms outlined above are not designed to
protect operations such as zone transfers and dynamic update
...
... resolver may find it difficult or impossible to obtain or validate
signed DNS data. The security-aware resolver may have a particularly
difficult time obtaining DS RRs ...
... security-aware name server, or for any
DNS data that the resolver is only able to obtain through a recursive
name server that is not security-aware ...
... security-aware resolver cannot validate the affected DNS data.
This document briefly discusses other methods ...