datatracker.ietf.org
DNS Extensions (dnsext)
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Add | Document | Title | Date | Status | IPR | AD / Shepherd | |||
|---|---|---|---|---|---|---|---|---|---|
| RFCs | |||||||||
|
RFC 2782
(was draft-ietf-dnsind-rfc2052bis) |
A DNS RR for specifying the location of services (DNS SRV) | 2000-02 |
RFC 2782 (Proposed Standard)
Updated by RFC6335
|
||||||
|
RFC 2845
(was draft-ietf-dnsext-tsig) |
Secret Key Transaction Authentication for DNS (TSIG) | 2000-05 | RFC 2845 (Proposed Standard) | ||||||
|
RFC 2929
(was draft-ietf-dnsext-iana-dns) |
Domain Name System (DNS) IANA Considerations | 2000-09 |
RFC 2929 (Best Current Practice)
Obsoleted by RFC5395
|
||||||
|
RFC 2930
(was draft-ietf-dnsext-tkey) |
Secret Key Establishment for DNS (TKEY RR) | 2000-09 |
RFC 2930 (Proposed Standard)
Updated by RFC6895
|
||||||
|
RFC 2931
(was draft-ietf-dnsext-sig-zero) |
DNS Request and Transaction Signatures ( SIG(0)s ) | 2000-09 | RFC 2931 (Proposed Standard) | ||||||
|
RFC 3007
(was draft-ietf-dnsext-simple-secure-update) |
Secure Domain Name System (DNS) Dynamic Update | 2000-11 | RFC 3007 (Proposed Standard) | ||||||
|
RFC 3008
(was draft-ietf-dnsext-signing-auth) |
Domain Name System Security (DNSSEC) Signing Authority | 2000-11 |
RFC 3008 (Proposed Standard)
Updated by RFC3658
|
||||||
|
RFC 3090
(was draft-ietf-dnsext-zone-status) |
DNS Security Extension Clarification on Zone Status | 2001-03 |
RFC 3090 (Proposed Standard)
Updated by RFC3658
|
||||||
|
RFC 3110
(was draft-ietf-dnsext-rsa) |
RSA/SHA-1 SIGs and RSA KEYs in the Domain Name System (DNS) | 2001-05 |
RFC 3110 (Proposed Standard)
Updated by RFC6944
|
||||||
|
RFC 3123
(was draft-ietf-dnsext-apl-rr) |
A DNS RR Type for Lists of Address Prefixes (APL RR) | 2001-06 | RFC 3123 (Experimental) | ||||||
|
RFC 3197
(was draft-ietf-dnsext-dnsmib-historical) |
Applicability Statement for DNS MIB Extensions | 2001-11 | RFC 3197 (Informational) | ||||||
|
RFC 3225
(was draft-ietf-dnsext-dnssec-okbit) |
Indicating Resolver Support of DNSSEC | 2001-12 | RFC 3225 (Proposed Standard) | ||||||
|
RFC 3226
(was draft-ietf-dnsext-message-size) |
DNSSEC and IPv6 A6 aware server/resolver message size requirements | 2001-12 | RFC 3226 (Proposed Standard) | ||||||
|
RFC 3363
(was draft-ietf-dnsext-ipv6-addresses) |
Representing Internet Protocol version 6 (IPv6) Addresses in the Domain Name System (DNS) | 2002-08 |
RFC 3363 (Informational)
Updated by RFC6672
|
Thomas Narten | |||||
|
RFC 3364
(was draft-ietf-dnsext-ipv6-dns-tradeoffs) |
Tradeoffs in Domain Name System (DNS) Support for Internet Protocol version 6 (IPv6) | 2002-08 | RFC 3364 (Informational) | Thomas Narten | |||||
|
RFC 3425
(was draft-ietf-dnsext-obsolete-iquery) |
Obsoleting IQUERY | 2002-11 | RFC 3425 (Proposed Standard) | Erik Nordmark | |||||
|
RFC 3445
(was draft-ietf-dnsext-restrict-key-for-dnssec) |
Limiting the Scope of the KEY Resource Record (RR) | 2002-12 | RFC 3445 (Proposed Standard) | Erik Nordmark | |||||
|
RFC 3596
(was draft-ietf-dnsext-rfc1886bis) |
DNS Extensions to Support IP Version 6 | 2003-10 | RFC 3596 (Draft Standard) | Erik Nordmark | |||||
|
RFC 3597
(was draft-ietf-dnsext-unknown-rrs) |
Handling of Unknown DNS Resource Record (RR) Types | 2003-09 | RFC 3597 (Proposed Standard) | Ralph Droms | |||||
|
RFC 3645
(was draft-ietf-dnsext-gss-tsig) |
Generic Security Service Algorithm for Secret Key Transaction Authentication for DNS (GSS-TSIG) | 2003-10 | RFC 3645 (Proposed Standard) | Erik Nordmark | |||||
|
RFC 3655
(was draft-ietf-dnsext-ad-is-secure) |
Redefinition of DNS Authenticated Data (AD) bit | 2003-11 | RFC 3655 (Proposed Standard) | Erik Nordmark | |||||
|
RFC 3658
(was draft-ietf-dnsext-delegation-signer) |
Delegation Signer (DS) Resource Record (RR) | 2003-12 |
RFC 3658 (Proposed Standard)
Updated by RFC3755
|
Thomas Narten | |||||
|
RFC 3755
(was draft-ietf-dnsext-dnssec-2535typecode-change) |
Legacy Resolver Compatibility for Delegation Signer (DS) | 2004-05 | RFC 3755 (Proposed Standard) | Thomas Narten | |||||
|
RFC 3757
(was draft-ietf-dnsext-keyrr-key-signing-flag) |
Domain Name System KEY (DNSKEY) Resource Record (RR) Secure Entry Point (SEP) Flag | 2004-05 | RFC 3757 (Proposed Standard) | Thomas Narten | |||||
|
RFC 3833
(was draft-ietf-dnsext-dns-threats) |
Threat Analysis of the Domain Name System (DNS) | 2004-08 | RFC 3833 (Informational) | Thomas Narten | |||||
|
RFC 3845
(was draft-ietf-dnsext-nsec-rdata) |
DNS Security (DNSSEC) NextSECure (NSEC) RDATA Format | 2004-08 | RFC 3845 (Proposed Standard) | Thomas Narten | |||||
|
RFC 4033
(was draft-ietf-dnsext-dnssec-intro) |
DNS Security Introduction and Requirements | 2005-03 | RFC 4033 (Proposed Standard) | 1 | Thomas Narten | ||||
|
RFC 4034
(was draft-ietf-dnsext-dnssec-records) |
Resource Records for the DNS Security Extensions | 2005-03 | RFC 4034 (Proposed Standard) | 2 | Thomas Narten | ||||
|
RFC 4035
(was draft-ietf-dnsext-dnssec-protocol) |
Protocol Modifications for the DNS Security Extensions | 2005-03 | RFC 4035 (Proposed Standard) | 1 | Thomas Narten | ||||
|
RFC 4343
(was draft-ietf-dnsext-insensitive) |
Domain Name System (DNS) Case Insensitivity Clarification | 2006-01 | RFC 4343 (Proposed Standard) | Margaret Wasserman | |||||
|
RFC 4398
(was draft-ietf-dnsext-rfc2538bis) |
Storing Certificates in the Domain Name System (DNS) | 2006-03 |
RFC 4398 (Proposed Standard)
Updated by RFC6944
|
1 | Margaret Wasserman | ||||
|
RFC 4470
(was draft-ietf-dnsext-dnssec-online-signing) |
Minimally Covering NSEC Records and DNSSEC On-line Signing | 2006-04 | RFC 4470 (Proposed Standard) | Margaret Wasserman | |||||
|
RFC 4471
(was draft-ietf-dnsext-dns-name-p-s) |
Derivation of DNS Name Predecessor and Successor | 2006-09 | RFC 4471 (Experimental) | Mark Townsley | |||||
|
RFC 4509
(was draft-ietf-dnsext-ds-sha256) |
Use of SHA-256 in DNSSEC Delegation Signer (DS) Resource Records (RRs) | 2006-05 | RFC 4509 (Proposed Standard) | Margaret Wasserman | |||||
|
RFC 4592
(was draft-ietf-dnsext-wcard-clarify) |
The Role of Wildcards in the Domain Name System | 2006-07 | RFC 4592 (Proposed Standard) | Margaret Wasserman | |||||
|
RFC 4635
(was draft-ietf-dnsext-tsig-sha) |
HMAC SHA (Hashed Message Authentication Code, Secure Hash Algorithm) TSIG Algorithm Identifiers | 2006-08 | RFC 4635 (Proposed Standard) | Margaret Wasserman | |||||
|
RFC 4701
(was draft-ietf-dnsext-dhcid-rr) |
A DNS Resource Record (RR) for Encoding Dynamic Host Configuration Protocol (DHCP) Information (DHCID RR) | 2006-10 |
RFC 4701 (Proposed Standard)
Updated by RFC5494
|
Margaret Wasserman | |||||
|
RFC 4795
(was draft-ietf-dnsext-mdns) |
Link-local Multicast Name Resolution (LLMNR) | 2007-01 | RFC 4795 (Informational) | Mark Townsley | |||||
|
RFC 4955
(was draft-ietf-dnsext-dnssec-experiments) |
DNS Security (DNSSEC) Experiments | 2007-07 | RFC 4955 (Proposed Standard) | Mark Townsley | |||||
|
RFC 4956
(was draft-ietf-dnsext-dnssec-opt-in) |
DNS Security (DNSSEC) Opt-In | 2007-07 | RFC 4956 (Experimental) | Mark Townsley | |||||
|
RFC 4986
(was draft-ietf-dnsext-rollover-requirements) |
Requirements Related to DNS Security (DNSSEC) Trust Anchor Rollover | 2007-08 | RFC 4986 (Informational) | Mark Townsley | |||||
|
RFC 5001
(was draft-ietf-dnsext-nsid) |
DNS Name Server Identifier (NSID) Option | 2007-08 | RFC 5001 (Proposed Standard) | Mark Townsley | |||||
|
RFC 5011
(was draft-ietf-dnsext-trustupdate-timers) |
Automated Updates of DNS Security (DNSSEC) Trust Anchors | 2007-09 | RFC 5011 (Internet Standard) | 3 | Mark Townsley | ||||
|
RFC 5155
(was draft-ietf-dnsext-nsec3) |
DNS Security (DNSSEC) Hashed Authenticated Denial of Existence | 2008-03 | RFC 5155 (Proposed Standard) | 1 | Mark Townsley | ||||
|
RFC 5395
(was draft-ietf-dnsext-2929bis) |
Domain Name System (DNS) IANA Considerations | 2008-11 |
RFC 5395 (Best Current Practice)
Obsoleted by RFC6195
|
Mark Townsley | |||||
|
RFC 5452
(was draft-ietf-dnsext-forgery-resilience) |
Measures for Making DNS More Resilient against Forged Answers | 2009-01 | RFC 5452 (Proposed Standard) | Mark Townsley | |||||
|
RFC 5625
(was draft-ietf-dnsext-dnsproxy) |
DNS Proxy Implementation Guidelines | 2009-08 | RFC 5625 (Best Current Practice) | Ralph Droms | |||||
|
RFC 5702
(was draft-ietf-dnsext-dnssec-rsasha256) |
Use of SHA-2 Algorithms with RSA in DNSKEY and RRSIG Resource Records for DNSSEC | 2009-10 |
RFC 5702 (Proposed Standard)
Updated by RFC6944
|
Ralph Droms | |||||
|
RFC 5933
(was draft-ietf-dnsext-dnssec-gost) |
Use of GOST Signature Algorithms in DNSKEY and RRSIG Resource Records for DNSSEC | 2010-07 |
RFC 5933 (Proposed Standard)
Updated by RFC6944
|
Ralph Droms | |||||
|
RFC 5936
(was draft-ietf-dnsext-axfr-clarify) |
DNS Zone Transfer Protocol (AXFR) | 2010-06 | RFC 5936 (Proposed Standard) | Ralph Droms | |||||
|
RFC 5966
(was draft-ietf-dnsext-dns-tcp-requirements) |
DNS Transport over TCP - Implementation Requirements | 2010-08 | RFC 5966 (Proposed Standard) | Ralph Droms | |||||
|
RFC 6014
(was draft-ietf-dnsext-dnssec-alg-allocation) |
Cryptographic Algorithm Identifier Allocation for DNSSEC | 2010-11 | RFC 6014 (Proposed Standard) | Ralph Droms | |||||
|
RFC 6195
(was draft-ietf-dnsext-5395bis) |
Domain Name System (DNS) IANA Considerations | 2011-03 |
RFC 6195 (Best Current Practice)
Obsoleted by RFC6895
|
Ralph Droms | |||||
|
RFC 6604
(was draft-ietf-dnsext-xnamercode) |
xNAME RCODE and Status Bits Clarification | 2012-04 | RFC 6604 (Proposed Standard) | Ralph Droms | |||||
|
RFC 6605
(was draft-ietf-dnsext-ecdsa) |
Elliptic Curve Digital Signature Algorithm (DSA) for DNSSEC | 2012-04 | RFC 6605 (Proposed Standard) | 1 | Ralph Droms | ||||
|
RFC 6672
(was draft-ietf-dnsext-rfc2672bis-dname) |
DNAME Redirection in the DNS | 2012-06 | RFC 6672 (Proposed Standard) | Ralph Droms Andrew Sullivan |
|||||
|
RFC 6725
(was draft-ietf-dnsext-dnssec-registry-update) |
DNS Security (DNSSEC) DNSKEY Algorithm IANA Registry Updates | 2012-08 | RFC 6725 (Proposed Standard) | Ralph Droms | |||||
|
RFC 6840
(was draft-ietf-dnsext-dnssec-bis-updates) |
Clarifications and Implementation Notes for DNS Security (DNSSEC) | 2013-02 | RFC 6840 (Proposed Standard) | Ralph Droms Andrew Sullivan |
|||||
|
RFC 6891
(was draft-ietf-dnsext-rfc2671bis-edns0) |
Extension Mechanisms for DNS (EDNS(0)) | 2013-04 | RFC 6891 (Internet Standard) | Ralph Droms | |||||
|
RFC 6895
(was draft-ietf-dnsext-rfc6195bis) |
Domain Name System (DNS) IANA Considerations | 2013-04 | RFC 6895 (Best Current Practice) | Ralph Droms | |||||
|
RFC 6944
(was draft-ietf-dnsext-dnssec-algo-imp-status) |
Applicability Statement: DNS Security (DNSSEC) DNSKEY Algorithm Implementation Status | 2013-04 | RFC 6944 (Proposed Standard) | Ralph Droms | |||||
|
RFC 6975
(was draft-ietf-dnsext-dnssec-algo-signal) |
Signaling Cryptographic Algorithm Understanding in DNS Security Extensions (DNSSEC) | 2013-07 | RFC 6975 (Proposed Standard) | Ted Lemon | |||||
| Add | Document | Title | Date | Status | IPR | AD / Shepherd | |||
|---|---|---|---|---|---|---|---|---|---|
| Related Internet-Draft | |||||||||
| draft-kaplan-dnsext-enum-sip-source-ref-opt-code-03 | EDNS Option Code for SIP and PSTN Source Reference Info | 2011-10-24 |
I-D Exists
In ISE Review |
||||||