RFC 3833

Threat Analysis of the Domain Name System (DNS), August 2004

Canonical URL:
https://www.rfc-editor.org/rfc/rfc3833.txt
File formats:
Plain TextPDF
Status:
INFORMATIONAL
Authors:
D. Atkins
R. Austein
Stream:
IETF
Source:
dnsext (int)

Cite this RFC: TXT  |  XML

DOI:  10.17487/RFC3833

Discuss this RFC: Send questions or comments to dnsext@ietf.org

Other actions: Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

Although the DNS Security Extensions (DNSSEC) have been under development for most of the last decade, the IETF has never written down the specific set of threats against which DNSSEC is designed to protect. Among other drawbacks, this cart-before-the-horse situation has made it difficult to determine whether DNSSEC meets its design goals, since its design goals are not well specified. This note attempts to document some of the known threats to the DNS, and, in doing so, attempts to measure to what extent (if any) DNSSEC is a useful tool in defending against these threats. This memo provides information for the Internet community.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Download PDF Reader



Search RFCs
Advanced Search
×