Go to Content

Tools

TUTORIALS:

• BIND DNSSEC Guide

SCRIPTS:

• KIT DNSSEC: v0.9 
• Script @ ul.pt: 
editNsign
• Example files: 
example file zone / named.conf

REFERENCES:

http://www.dnssec-validator.cz
http://dnscheck.iis.se
http://dnscheck.pingdom.com
http://dnssec-debugger.verisignlabs.com
http://dnsviz.net

PROJECTS:

http://www.internetsociety.org/deploy360/dnssec
http://www.dnssec.net
http://www.dnssec-deployment.org

RFCs:

• DNS
RFC 1034: Domain names - Concepts and Facilities
RFC 1035: Domain names - Implementation and Specification
RFC 1912: Common DNS Operational and Configuration Errors
RFC 2671: Extension Mechanisms for DNS (EDNS0)

• DNSSEC:

RFC 4033 - DNS Security Introduction and Requirements
RFC 4034 - Resource Records for the DNS Security Extensions
RFC 4035 - Protocol Modifications for the DNS Security Extensions
RFC 4641 - DNSSEC Operational Practices

• DANE:

RFC 6698 
The DNS-Based Authentication of Named Entities (DANE)
Transport Layer Security (TLS) Protocol: TLSA
RFC 7218 
Adding Acronyms to Simplify Conversations about
DNS-Based Authentication of Named Entities (DANE)
RFC 7671
The DNS-Based Authentication of Named Entities (DANE) Protocol:
Updates and Operational Guidance