DNSSEC Trust Anchor Publication for the Root Zone
RFC 7958, “DNSSEC Trust Anchor Publication for the Root Zone”, is an Informational document published in August 2016 by J. Abley, J. Schlyter, G. Bailey, P. Hoffman. It has been obsoleted by RFC 9718 — refer to the newer document for the authoritative version. The canonical text is published by the RFC Editor.
Abstract
The root zone of the Domain Name System (DNS) has been cryptographically signed using DNS Security Extensions (DNSSEC).
In order to obtain secure answers from the root zone of the DNS using DNSSEC, a client must configure a suitable trust anchor. This document describes the format and publication mechanisms IANA has used to distribute the DNSSEC trust anchors.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 7958 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 7957 DISPATCH-Style Working Groups and the SIP Change Process
- RFC 7959 Block-Wise Transfers in the Constrained Application Protocol
- RFC 7956 Transparent Interconnection of Lots of Links Distributed Layer 3 Gateway
- RFC 7960 Interoperability Issues between Domain-based Message Authentication, Reporting, and Conformance and Indirect Email Flows
- RFC 7955 Management Guidelines for the Locator/ID Separation Protocol Endpoint Identifier Block
- RFC 7961 Transparent Interconnection of Lots of Links : Interface Addresses APPsub-TLV
- RFC 7954 Locator/ID Separation Protocol Endpoint Identifier Block
- RFC 7962 Alternative Network Deployments: Taxonomy, Characterization, Technologies, and Architectures