{"draft":"draft-ietf-dnsext-nsec3-13","doc_id":"RFC5155","title":"DNS Security (DNSSEC) Hashed Authenticated Denial of Existence","authors":["B. Laurie","G. Sisson","R. Arends","D. Blacka"],"format":["ASCII","HTML"],"page_count":"52","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"DNS Extensions","abstract":"The Domain Name System Security (DNSSEC) Extensions introduced the\r\nNSEC resource record (RR) for authenticated denial of existence.\r\nThis document introduces an alternative resource record, NSEC3, which\r\nsimilarly provides authenticated denial of existence.  However, it\r\nalso provides measures against zone enumeration and permits gradual\r\nexpansion of delegation-centric zones.  [STANDARDS-TRACK]","pub_date":"March 2008","keywords":["domain name system","nsec","resource record","nsec3"],"obsoletes":[],"obsoleted_by":[],"updates":[],"updated_by":["RFC6840","RFC6944","RFC9077","RFC9157","RFC9276"],"see_also":[],"doi":"10.17487\/RFC5155","errata_url":"https:\/\/www.rfc-editor.org\/errata\/rfc5155"}