跳到主要内容

8. 参考文献

本节列出本文档使用的规范性和资料性参考文献. 规范性参考文献定义本文档依赖的 registry, 要求级别关键词和 IANA 流程. 资料性参考文献提供 DNSSEC 算法定义, DNSSEC 操作实践, 既有算法要求和相关 IANA registries 的背景资料. 条目中的作者, RFC 编号, DOI, 日期和 URL 元数据保持原样, 以便读者准确定位原始资料.

8.1. 规范性参考文献

[DNSKEY-IANA] IANA, "DNS Security Algorithm Numbers (DNS 安全算法编号)", https://www.iana.org/assignments/dns-sec-alg-numbers.

[DS-IANA] IANA, "Digest Algorithms (摘要算法)", http://www.iana.org/assignments/ds-rr-types.

[RFC2119] Bradner, S., "用于在 RFC 中指示要求级别的关键词", BCP 14, RFC 2119, DOI 10.17487/RFC2119, March 1997, https://www.rfc-editor.org/info/rfc2119.

[RFC8126] Cotton, M., Leiba, B., and T. Narten, "RFC 中 IANA 考虑章节的编写指南", BCP 26, RFC 8126, DOI 10.17487/RFC8126, June 2017, https://www.rfc-editor.org/info/rfc8126.

[RFC8174] Leiba, B., "RFC 2119 关键词中大小写的歧义", BCP 14, RFC 8174, DOI 10.17487/RFC8174, May 2017, https://www.rfc-editor.org/info/rfc8174.

[RFC9157] Hoffman, P., "DNSSEC 的修订版 IANA 考虑", RFC 9157, DOI 10.17487/RFC9157, December 2021, https://www.rfc-editor.org/info/rfc9157.

8.2. 资料性参考文献

[RFC4034] Arends, R., Austein, R., Larson, M., Massey, D., and S. Rose, "DNS 安全扩展的资源记录", RFC 4034, DOI 10.17487/RFC4034, March 2005, https://www.rfc-editor.org/info/rfc4034.

[RFC4509] Hardaker, W., "在 DNSSEC Delegation Signer (DS) Resource Records (RRs) 中使用 SHA-256", RFC 4509, DOI 10.17487/RFC4509, May 2006, https://www.rfc-editor.org/info/rfc4509.

[RFC5155] Laurie, B., Sisson, G., Arends, R., and D. Blacka, "DNS Security (DNSSEC) 哈希认证的不存在性否定", RFC 5155, DOI 10.17487/RFC5155, March 2008, https://www.rfc-editor.org/info/rfc5155.

[RFC5702] Jansen, J., "在 DNSSEC 的 DNSKEY 和 RRSIG Resource Records 中将 SHA-2 算法与 RSA 配合使用", RFC 5702, DOI 10.17487/RFC5702, October 2009, https://www.rfc-editor.org/info/rfc5702.

[RFC5933] Dolmatov, V., Ed., Chuprina, A., and I. Ustinov, "在 DNSSEC 的 DNSKEY 和 RRSIG Resource Records 中使用 GOST 签名算法", RFC 5933, DOI 10.17487/RFC5933, July 2010, https://www.rfc-editor.org/info/rfc5933.

[RFC6605] Hoffman, P. and W.C.A. Wijngaards, "用于 DNSSEC 的椭圆曲线数字签名算法 (DSA)", RFC 6605, DOI 10.17487/RFC6605, April 2012, https://www.rfc-editor.org/info/rfc6605.

[RFC6781] Kolkman, O., Mekking, W., and R. Gieben, "DNSSEC 操作实践, 第 2 版", RFC 6781, DOI 10.17487/RFC6781, December 2012, https://www.rfc-editor.org/info/rfc6781.

[RFC7583] Morris, S., Ihren, J., Dickinson, J., and W. Mekking, "DNSSEC 密钥轮转时序考虑", RFC 7583, DOI 10.17487/RFC7583, October 2015, https://www.rfc-editor.org/info/rfc7583.

[RFC8080] Sury, O. and R. Edmonds, "用于 DNSSEC 的 Edwards-Curve Digital Security Algorithm (EdDSA)", RFC 8080, DOI 10.17487/RFC8080, February 2017, https://www.rfc-editor.org/info/rfc8080.

[RFC8624] Wouters, P. and O. Sury, "DNSSEC 的算法实现要求和使用指南", RFC 8624, DOI 10.17487/RFC8624, June 2019, https://www.rfc-editor.org/info/rfc8624.

[RFC9364] Hoffman, P., "DNS Security Extensions (DNSSEC)", BCP 237, RFC 9364, DOI 10.17487/RFC9364, February 2023, https://www.rfc-editor.org/info/rfc9364.

[TLS-ciphersuites] IANA, "Transport Layer Security (TLS) Parameters (TLS 参数)", https://www.iana.org/assignments/tls-parameters.