RFC 6605

E207080

RFC 6605 is an Internet standards document that specifies the use of Elliptic Curve Digital Signature Algorithm (ECDSA) with the Domain Name System Security Extensions (DNSSEC) to provide more efficient cryptographic signing and validation of DNS data.

All labels observed (1)

Label Occurrences
RFC 6605 canonical 1

How this entity was disambiguated

Statements (44)

Predicate Object
instanceOf IETF standard
Internet standards document
Request for Comments
aimsTo provide more efficient cryptographic signing of DNS data
provide more efficient cryptographic validation of DNS data
appliesTo DNS resolver validation
DNS zone signing
area Security
belongsTo RFCs
surface form: RFC series
category Standards Track
defines algorithm identifiers for ECDSA in DNSSEC
wire format for ECDSA DNSKEY public keys
wire format for ECDSA DNSSEC signatures
definesAlgorithmFor DNSSEC signing
DNSSEC validation
definesDNSKEYAlgorithm ECDSA with P-256 and SHA-256
ECDSA with P-384 and SHA-384
definesRRTypeUsage DNSKEY
DS
NSEC3
DNSKEY
surface form: RRSIG
focusesOn public key cryptography for DNSSEC
improvesOver RSA-based DNSSEC algorithms in efficiency
intendedFor DNS operators
DNS software implementers
security engineers working with DNSSEC
language English
motivatedBy need to reduce key sizes in DNSSEC
need to reduce signature sizes in DNSSEC
partOfSeries DNSSEC algorithm specification RFCs
publishedBy Internet Engineering Task Force
surface form: IETF

Internet Engineering Task Force
relatesToProtocol DNS
DNSSEC
specifies algorithm numbers for ECDSA DNSKEY and RRSIG records
specifiesUseOf Elliptic Curve Digital Signature Algorithm
surface form: ECDSA

Elliptic Curve Digital Signature Algorithm
standardizes use of ECDSA signatures in DNSSEC
status Proposed Standard
title Elliptic Curve Digital Signature Algorithm
surface form: Elliptic Curve Digital Signature Algorithm (ECDSA) for DNSSEC
updatesSpecificationFor DNSSEC
surface form: DNS Security Extensions
usesCryptographicPrimitive elliptic curve cryptography
usesHashFunction SHA-256
SHA-384

How these facts were elicited

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

DNSSEC definedInRFC RFC 6605