ICANNWiki

Domain Name System Security Extensions: Difference between revisions

← Older editNewer edit →
Christiane (talk | contribs)
Bureaucrats, Check users, Curators (Semantic MediaWiki), Editors (Semantic MediaWiki), steward, Administrators, Temporary account IP viewers
6,657 edits
VisualWikitext
m Text replacement - "__NOTOC__" to ""
m added acronym
Line 1: Line 1:
The '''Domain Name System Security Extensions''' are a set of [[DNS|Domain Name System]] (DNS) extensions enabling communication authentication between hosts and DNS data, while ensuring data integrity. DNSSEC is used for securing specific information provided by [[DNS]].
The '''Domain Name System Security Extensions (DNSSEC)''' are a set of [[DNS|Domain Name System]] (DNS) extensions enabling communication authentication between hosts and DNS data, while ensuring data integrity. DNSSEC is used for securing specific information provided by [[DNS]].


DNSSEC adds resource records and message header bits which can be used to verify that the requested data matches what the zone administrator put in the zone and has not been altered in transit. DNSSEC doesn’t provide a secure tunnel; it doesn’t encrypt or hide DNS data. It was designed with backward compatibility in mind. The original standard DNS protocol continues to work the same.
DNSSEC adds resource records and message header bits which can be used to verify that the requested data matches what the zone administrator put in the zone and has not been altered in transit. DNSSEC doesn’t provide a secure tunnel; it doesn’t encrypt or hide DNS data. It was designed with backward compatibility in mind. The original standard DNS protocol continues to work the same.
Retrieved from "https://staging.icannwiki.org/Domain_Name_System_Security_Extensions"