Asserting DNS Policy Realm Boundaries: The SOPA Resource Record

The information below is for an old version of the document
Document Type Expired Internet-Draft (individual)
Last updated 2014-01-06 (latest revision 2013-07-05)
Replaces draft-sullivan-domain-origin-assert
Stream (None)
Intended RFC status (None)
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


Some Internet client entities on the Internet make inferences about the administrative relationships among services on the Internet based on the domain names at which they are offered. At present, it is not possible to ascertain organizational administrative boundaries in the DNS, therefore such inferences can be erroneous in various ways. Mitigation strategies deployed so far will not scale. The solution presented in this memo is to provide a means to make explicit assertions regarding certain administrative relationships between domain names.


Andrew Sullivan (
Jeff Hodges (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)