Changes

Jump to navigation Jump to search

Domain Name System Security Extensions (view source)

Revision as of 22:56, 3 February 2011

2 bytes added ,  13 years ago
→‎Objectives
Line 18: Line 18:  
* Authenticated denial of existence
 
* Authenticated denial of existence
   −
The DNSSEC mechanism of authentication of communication between hosts is fulfilled by means of [[TSIG]]. More specifically, the TSIG is used to securely authenticate the transactions between the name servers and the resolver. The DNSSEC mechanism of establishing authenticity and data integrity is achieved by means of: new RRs, singning a single zone, building a trust chain and by means of [[key rollers]] or [[key exchange]].  
+
The DNSSEC mechanism of authentication of communication between hosts is fulfilled by means of [[TSIG]]. More specifically, the [[TSIG]] is used to securely authenticate the transactions between the name servers and the resolver. The DNSSEC mechanism of establishing authenticity and data integrity is achieved by means of: new RRs, signing a single zone, building a trust chain and by means of [[key rollers]] or [[key exchange]].
    
==DNSSEC Difficulties==
 
==DNSSEC Difficulties==
Retrieved from "https://icannwiki.org/Special:MobileDiff/7318"

Navigation menu