DNSSEC

E37203

DNSSEC (Domain Name System Security Extensions) is a suite of specifications that adds cryptographic authentication and integrity protection to DNS data to prevent attacks such as cache poisoning and spoofing.

Try in SPARQL Jump to: Surface forms Statements Referenced by

All labels observed (11)

Statements (51)

Predicate Object
instanceOf DNS extension
internet security protocol suite
abbreviation DNSSEC self-link
appliesTo forward DNS zones
reverse DNS zones
definedInRFC RFC 4033
RFC 4034
RFC 4035
RFC 4509
RFC 5011
RFC 5155
RFC 5702
RFC 6605
RFC 6840
RFC 8080
deploymentStatus partially deployed on the public internet
doesNotProvide confidentiality
fullName DNSSEC self-linksurface differs
surface form: Domain Name System Security Extensions
introducesRecordType CDNSKEY
CDS
DNSKEY
DS
NSEC
NSEC3
NSEC3PARAM
RRSIG
mitigates DNS cache poisoning
DNS spoofing
operatesOn DNS resource records
provides data integrity
data origin authentication
relatedStandard DANE
TSIG
requires DNSSEC-aware authoritative name servers
DNSSEC-validating resolvers
rootZoneManagedBy Internet Corporation for Assigned Names and Numbers
surface form: ICANN

U.S. Department of Commerce
VeriSign
surface form: Verisign
rootZoneSigned 2010-07-15
standardizedBy Internet Engineering Task Force
surface form: IETF
supportsAlgorithm DSA
ECDSA
Ed25519
Ed448
RSA
usesCryptography public key cryptography
usesMechanism chain of trust
delegation signer records
key signing key
zone signing key
verificationPerformedBy validating resolver

Referenced by (44)

Full triples — surface form annotated when it differs from this entity's canonical label.

Domain Name System root zone securedBy DNSSEC
this entity surface form: DNS Security Extensions
DNSSEC fullName DNSSEC self-linksurface differs
this entity surface form: Domain Name System Security Extensions
DNSSEC abbreviation DNSSEC self-link
DNSSEC root key signing ceremony relatedTo DNSSEC
this entity surface form: Domain Name System Security Extensions
DNSSEC ZSK usedIn DNSSEC
this entity surface form: DNS Security Extensions
DNS64 relatedTo DNSSEC
BCP 175 appliesTo DNSSEC
BCP 175 hasTopic DNSSEC
this entity surface form: DNS Security Extensions
Cloud DNS supports DNSSEC
RFC 4033 title DNSSEC
this entity surface form: DNS Security Introduction and Requirements
RFC 4033 defines DNSSEC
this entity surface form: DNS Security Extensions
RFC 4033 defines DNSSEC
RFC 4033 partOf DNSSEC
this entity surface form: DNSSEC specification suite
RFC 4033 definesConcept DNSSEC
this entity surface form: DNSSEC trust model
RFC 4035 partOf DNSSEC
this entity surface form: DNS Security Introduction and Requirements specification set
RFC 4035 relatedTo DNSSEC
this entity surface form: DNS Security Extensions
RFC 4035 partOf DNSSEC
this entity surface form: DNSSEC standards suite
RFC 5702 appliesToProtocol DNSSEC
this entity surface form: DNS Security Extensions
RFC 5702 appliesToProtocol DNSSEC
RFC 5155 workingGroup DNSSEC
this entity surface form: DNS Extensions (dnsext)
RFC 5155 protocolFamily DNSSEC
this entity surface form: DNS Security Extensions
RFC 5155 protocolFamily DNSSEC
RFC 5011 appliesTo DNSSEC
this entity surface form: Domain Name System Security Extensions
RFC 5011 relatedTo DNSSEC
RFC 5011 hasKeyword DNSSEC
RFC 6605 updatesSpecificationFor DNSSEC
this entity surface form: DNS Security Extensions
RFC 6605 relatesToProtocol DNSSEC
DNSSEC KSK hasRoleIn DNSSEC
C-root supportsFeature DNSSEC
G-root implementsStandard DNSSEC
M-root supportsProtocol DNSSEC
RFC 6840 protocolFamily DNSSEC
this entity surface form: Domain Name System Security Extensions
RFC 6840 protocolFamily DNSSEC
RFC 6840 clarifies DNSSEC
this entity surface form: DNSSEC core specifications
CDS partOf DNSSEC
subject surface form: CDS (Child DS)
DANE uses DNSSEC
DANE relatedStandard DNSSEC
TSIG relatedTo DNSSEC
RFC 4034 partOf DNSSEC
this entity surface form: DNS Security Extensions specification
RFC 4034 relatesTo DNSSEC
this entity surface form: DNS Security Extensions
DNS over TLS canBeUsedWith DNSSEC