Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/shuque/id-dnssec-compact-lies
Compact Authenticated Denial of Existence in DNSSEC
https://github.com/shuque/id-dnssec-compact-lies
dns dnssec ent ietf nxdomain
Last synced: 29 days ago
JSON representation
Compact Authenticated Denial of Existence in DNSSEC
- Host: GitHub
- URL: https://github.com/shuque/id-dnssec-compact-lies
- Owner: shuque
- Created: 2023-01-29T03:12:31.000Z (almost 2 years ago)
- Default Branch: main
- Last Pushed: 2024-10-18T02:17:04.000Z (2 months ago)
- Last Synced: 2024-10-20T14:14:30.991Z (2 months ago)
- Topics: dns, dnssec, ent, ietf, nxdomain
- Language: Makefile
- Homepage:
- Size: 144 KB
- Stars: 1
- Watchers: 3
- Forks: 4
- Open Issues: 2
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# id-dnssec-compact-lies
Compact Denial of Existence in DNSSEC
This document describes a technique to generate a signed DNS response
on demand for a non-existent name by claiming that the name exists
but doesn't have data for the queried record type, and returning
NODATA answer with an accompanying NSEC proof. Such answers require
only one NSEC record and allow online signing servers to minimize
signing operations and packet size.