RFC 5155
E204123
RFC 5155 is an Internet standards document that specifies the NSEC3 extension to DNSSEC, enhancing DNS security by providing authenticated denial of existence while mitigating zone enumeration.
All labels observed (1)
| Label | Occurrences |
|---|---|
| RFC 5155 canonical | 2 |
How this entity was disambiguated
This entity first appeared as the object of triple T1712019 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: RFC 5155 Context triple: [DNSSEC, definedInRFC, RFC 5155]
-
A.
RFC 8551
RFC 8551 is the Internet standards document that specifies the current version of S/MIME, a protocol for secure, encrypted, and signed email communication.
-
B.
RFC 5751
RFC 5751 is the Internet standards document that specifies the Secure/Multipurpose Internet Mail Extensions (S/MIME) protocol for secure email communication.
-
C.
RFC 6145
RFC 6145 is an IETF standard that specifies the stateless translation mechanism between IPv4 and IPv6 packet headers used in NAT64 environments.
-
D.
RFC 6557
RFC 6557 is an Internet Engineering Task Force (IETF) document that defines procedures and guidelines for the maintenance and distribution of the IANA time zone database.
-
E.
RFC 6052
RFC 6052 is an IETF standard that defines the IPv6 address format for representing IPv4 addresses, forming a core part of NAT64 and IPv4/IPv6 transition mechanisms.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: RFC 5155 Target entity description: RFC 5155 is an Internet standards document that specifies the NSEC3 extension to DNSSEC, enhancing DNS security by providing authenticated denial of existence while mitigating zone enumeration.
-
A.
RFC 8551
RFC 8551 is the Internet standards document that specifies the current version of S/MIME, a protocol for secure, encrypted, and signed email communication.
-
B.
RFC 5751
RFC 5751 is the Internet standards document that specifies the Secure/Multipurpose Internet Mail Extensions (S/MIME) protocol for secure email communication.
-
C.
RFC 6145
RFC 6145 is an IETF standard that specifies the stateless translation mechanism between IPv4 and IPv6 packet headers used in NAT64 environments.
-
D.
RFC 6557
RFC 6557 is an Internet Engineering Task Force (IETF) document that defines procedures and guidelines for the maintenance and distribution of the IANA time zone database.
-
E.
RFC 6052
RFC 6052 is an IETF standard that defines the IPv6 address format for representing IPv4 addresses, forming a core part of NAT64 and IPv4/IPv6 transition mechanisms.
- F. None of above. chosen
Statements (47)
| Predicate | Object |
|---|---|
| instanceOf |
Internet standards document
ⓘ
Request for Comments ⓘ |
| addresses | zone enumeration in DNSSEC ⓘ |
| aimsTo |
enhance DNS security
ⓘ
prevent trivial enumeration of DNS zones ⓘ |
| appliesTo |
DNS resource records
ⓘ
Domain Name System ⓘ |
| area | Security ⓘ |
| category | Standards Track ⓘ |
| defines |
NSEC3 Opt-Out mechanism
ⓘ
NSEC3 hashing parameters ⓘ NSEC3 operational practices ⓘ NSEC3 owner name construction ⓘ |
| definesExtension |
NSEC3
ⓘ
NSEC3PARAM ⓘ |
| documentType | Standards Track RFC ⓘ |
| focusesOn | authenticated denial of existence in DNSSEC ⓘ |
| intendedStatus | Standards Track ⓘ |
| language | English ⓘ |
| mitigates | DNS zone enumeration ⓘ |
| networkLayer | Application layer ⓘ |
| obsoletes | none ⓘ |
| partOf | DNSSEC specification suite ⓘ |
| protocolFamily |
DNSSEC
ⓘ
surface form:
DNS Security Extensions
DNSSEC ⓘ |
| provides | hashed authenticated denial of existence ⓘ |
| publishedBy |
Internet Engineering Task Force
ⓘ
surface form:
IETF
Internet Engineering Task Force ⓘ |
| relatedTo |
RFC 4033
ⓘ
RFC 4034 ⓘ RFC 4035 ⓘ |
| RFCNumber | 5155 ⓘ |
| securityProperty |
authenticated denial of existence
ⓘ
reduced information leakage about zone contents ⓘ |
| specifies |
NSEC3 record format
ⓘ
NSEC3PARAM record format ⓘ operational considerations for NSEC3 ⓘ security considerations for NSEC3 ⓘ use of cryptographic hash functions for NSEC3 records ⓘ |
| standardsStatus | Proposed Standard ⓘ |
| stream | IETF Stream ⓘ |
| title | DNS Security (DNSSEC) Hashed Authenticated Denial of Existence ⓘ |
| updates |
RFC 4034
ⓘ
RFC 4035 ⓘ |
| usesConcept |
iterative hashing of domain names
ⓘ
salted hashes ⓘ |
| workingGroup |
DNSSEC
ⓘ
surface form:
DNS Extensions (dnsext)
|
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: RFC 5155 Description of subject: RFC 5155 is an Internet standards document that specifies the NSEC3 extension to DNSSEC, enhancing DNS security by providing authenticated denial of existence while mitigating zone enumeration.
Referenced by (2)
Full triples — surface form annotated when it differs from this entity's canonical label.