Passa al contenuto principale

5. Considerazioni sulla sicurezza

5. Considerazioni sulla sicurezza

The rigor required here prevents publication of half-baked DS or delegation NS RRsets authorized only by an insufficient subset of authoritative nameservers. A single operator cannot unilaterally add or remove trust anchors or nameservers when other operators are present, whether the setup is intentional or accidental, such as lame-delegation hijacking.

Delegation records can be modified only when zones are synchronized across operators and unanimously reflect the domain owner's intent. This improves both availability and integrity of the domain's DNS service.

When consensus about child zone contents cannot be reached, Parental Agents SHOULD continue to accept DS and NS/glue update requests from the domain owner through an authenticated out-of-band channel such as EPP [RFC5730]. This also enables recovery when the private key is no longer available for signing CDS/CDNSKEY or CSYNC records in the child zone.