Browse Prior Art Database

DNS Security (DNSSEC) NextSECure (NSEC) RDATA Format (RFC3845)

IP.com Disclosure Number: IPCOM000030556D
Original Publication Date: 2004-Aug-01
Included in the Prior Art Database: 2004-Aug-17
Document File: 8 page(s) / 15K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

J. Schlyter: AUTHOR [+2]

Abstract

This document redefines the wire format of the "Type Bit Map" field in the DNS NextSECure (NSEC) resource record RDATA format to cover the full resource record (RR) type space.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 19% of the total text.

Network Working Group                                   J. Schlyter, Ed.

Request for Comments: 3845                                   August 2004

Updates: 3755, 2535

Category: Standards Track

          DNS Security (DNSSEC) NextSECure (NSEC) RDATA Format

Status of this Memo

   This document specifies an Internet standards track protocol for the

   Internet community, and requests discussion and suggestions for

   improvements.  Please refer to the current edition of the "Internet

   Official Protocol Standards" (STD 1) for the standardization state

   and status of this protocol.  Distribution of this memo is unlimited.

Copyright Notice

   Copyright (C) The Internet Society (2004).

Abstract

   This document redefines the wire format of the "Type Bit Map" field

   in the DNS NextSECure (NSEC) resource record RDATA format to cover

   the full resource record (RR) type space.

Table of Contents

   1.  Introduction . . . . . . . . . . . . . . . . . . . . . . . . .  2

   2.  The NSEC Resource Record . . . . . . . . . . . . . . . . . . .  2

       2.1.  NSEC RDATA Wire Format . . . . . . . . . . . . . . . . .  3

             2.1.1.  The Next Domain Name Field . . . . . . . . . . .  3

             2.1.2.  The List of Type Bit Map(s) Field  . . . . . . .  3

             2.1.3.  Inclusion of Wildcard Names in NSEC RDATA  . . .  4

       2.2.  The NSEC RR Presentation Format  . . . . . . . . . . . .  4

       2.3.  NSEC RR Example  . . . . . . . . . . . . . . . . . . . .  5

   3.  IANA Considerations  . . . . . . . . . . . . . . . . . . . . .  5

   4.  Security Considerations  . . . . . . . . . . . . . . . . . . .  5

   5.  References . . . . . . . . . . . . . . . . . . . . . . . . . .  6

       5.1.  Normative References . . . . . . . . . . . . . . . . . .  6

       5.2.  Informative References . . . . . . . . . . . . . . . . .  6

   6.  Acknowledgements . . . . . . . . . . . . . . . . . . . . . . .  6

   7.  Author's Address . . . . . . . . . . . . . . . . . . . . . . .  6

   8.  Full Copyright Statement . . . . . . . . . . . . . . . . . . .  7

Schlyter, Ed.               Standards Track                     [Page 1]

RFC 3845                DNSSEC NSEC RDATA Format             August 2004

1.  Introduction

   The DNS [6][7] NSEC [5] Resource Record (RR) is used for

   authenticated proof of the non-existence of DNS owner names and

   types.  The NSEC RR is based on the NXT RR as described in RFC 2535

   [2], and is similar except for the name and typecode.  The RDATA

   format for the NXT RR has the limitation in that the RDATA could only

   carry information about the existence of the first 127 types.  RFC

   2535 did reserve a bit to specify an extension mechan...