https://github.com/shuque/id-dnssec-compact-lies

Compact Authenticated Denial of Existence in DNSSEC
https://github.com/shuque/id-dnssec-compact-lies

compact denial dns dnssec ent existence ietf nsec nsec3 nxdomain of

Last synced: 8 months ago
JSON representation

Compact Authenticated Denial of Existence in DNSSEC

Host: GitHub
URL: https://github.com/shuque/id-dnssec-compact-lies
Owner: shuque
Created: 2023-01-29T03:12:31.000Z (almost 3 years ago)
Default Branch: main
Last Pushed: 2025-02-23T11:23:12.000Z (8 months ago)
Last Synced: 2025-02-23T11:31:19.261Z (8 months ago)
Topics: compact, denial, dns, dnssec, ent, existence, ietf, nsec, nsec3, nxdomain, of
Language: Makefile
Homepage:
Size: 343 KB
Stars: 1
Watchers: 3
Forks: 4
Open Issues: 2
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# id-dnssec-compact-lies
Compact Denial of Existence in DNSSEC

This document describes a technique to generate a signed DNS response
on demand for a non-existent name by claiming that the name exists
but doesn't have data for the queried record type, and returning
NODATA answer with an accompanying NSEC proof. Such answers require
only one NSEC record and allow online signing servers to minimize
signing operations and packet size.

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/shuque/id-dnssec-compact-lies

Awesome Lists containing this project

README