The public key is published in the DNS and can be used to check and verify a signature that has been issued with a private key. The private key is only known to the owner. In order to create the required digital signature for DNSSEC, a set of keys is generated, consisting of a private and a public key. It secures the path between teh DNS servers and validated DNS clients, including resolvers with their caches which are positioned in between. DNSSEC helps to ensure that the queried domain name leads to delivery of the recorded IP address. It was developed to counter cache poisoning. DNSSEC uses a public-key cryptosystem to secure name server queries and serves to verify sources. DNSSEC is a standardized extension to the DNS-protocol and guarantees the authenciity and integrity of data in the domain name system.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |