@techreport{zhang-dnsop-weak-trust-anchor-00,
    number =    {draft-zhang-dnsop-weak-trust-anchor-00},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-zhang-dnsop-weak-trust-anchor/00/},
    author =    {XiaoDong Lee and Haikuo Zhang and Nan Wang and Peng Zuo and Xiali Yan and Ce Luo and Hongtao Li},
    title =     {{Weak Trust Anchor Introduction}},
    pagetotal = 7,
    year =      2014,
    month =     may,
    day =       29,
    abstract =  {DNS Security Extensions (DNSSEC) is an effective method to provide security protection for resolvers and end users in the DNS protocols. But the DNSSEC is too aggressive for the DNS service in the poor network infrastructure, because the domain name will be invisible when large DNSSEC messages were dropped by some other network equipments, like the routers which have MTU problem or the old firewalls which do not support ENDS0. This document defines a new concept weak trust anchor which can be used on a security-aware resolver to get rid of the above problem.},
}