8. 参考文献
本节列出本文档使用的规范性和资料性参考文献. 规范性参考文献定义本文档依赖的 registry, 要求级别关键词和 IANA 流程. 资料性参考文献提供 DNSSEC 算法定义, DNSSEC 操作实践, 既有算法要求和相关 IANA registries 的背景资料. 条目中的作者, RFC 编号, DOI, 日期和 URL 元数据保持原样, 以便读者准确定位原始资料.
8.1. 规范性参考文献
[DNSKEY-IANA]
IANA, "DNS Security Algorithm Numbers (DNS 安全算法编号)",
https://www.iana.org/assignments/dns-sec-alg-numbers.
[DS-IANA]
IANA, "Digest Algorithms (摘要算法)",
http://www.iana.org/assignments/ds-rr-types.
[RFC2119]
Bradner, S., "用于在 RFC 中指示要求级别的关键词", BCP 14, RFC 2119, DOI 10.17487/RFC2119, March 1997,
https://www.rfc-editor.org/info/rfc2119.
[RFC8126]
Cotton, M., Leiba, B., and T. Narten, "RFC 中 IANA 考虑章节的编写指南", BCP 26, RFC 8126, DOI 10.17487/RFC8126, June 2017,
https://www.rfc-editor.org/info/rfc8126.
[RFC8174]
Leiba, B., "RFC 2119 关键词中大小写的歧义", BCP 14, RFC 8174, DOI 10.17487/RFC8174, May 2017,
https://www.rfc-editor.org/info/rfc8174.
[RFC9157]
Hoffman, P., "DNSSEC 的修订版 IANA 考虑", RFC 9157, DOI 10.17487/RFC9157, December 2021,
https://www.rfc-editor.org/info/rfc9157.
8.2. 资料性参考文献
[RFC4034]
Arends, R., Austein, R., Larson, M., Massey, D., and S. Rose, "DNS 安全扩展的资源记录", RFC 4034, DOI 10.17487/RFC4034, March 2005,
https://www.rfc-editor.org/info/rfc4034.
[RFC4509]
Hardaker, W., "在 DNSSEC Delegation Signer (DS) Resource Records (RRs) 中使用 SHA-256", RFC 4509, DOI 10.17487/RFC4509, May 2006,
https://www.rfc-editor.org/info/rfc4509.
[RFC5155]
Laurie, B., Sisson, G., Arends, R., and D. Blacka, "DNS Security (DNSSEC) 哈希认证的不存在性否定", RFC 5155, DOI 10.17487/RFC5155, March 2008,
https://www.rfc-editor.org/info/rfc5155.
[RFC5702]
Jansen, J., "在 DNSSEC 的 DNSKEY 和 RRSIG Resource Records 中将 SHA-2 算法与 RSA 配合使用", RFC 5702, DOI 10.17487/RFC5702, October 2009,
https://www.rfc-editor.org/info/rfc5702.
[RFC5933]
Dolmatov, V., Ed., Chuprina, A., and I. Ustinov, "在 DNSSEC 的 DNSKEY 和 RRSIG Resource Records 中使用 GOST 签名算法", RFC 5933, DOI 10.17487/RFC5933, July 2010,
https://www.rfc-editor.org/info/rfc5933.
[RFC6605]
Hoffman, P. and W.C.A. Wijngaards, "用于 DNSSEC 的椭圆曲线数字签名算法 (DSA)", RFC 6605, DOI 10.17487/RFC6605, April 2012,
https://www.rfc-editor.org/info/rfc6605.
[RFC6781]
Kolkman, O., Mekking, W., and R. Gieben, "DNSSEC 操作实践, 第 2 版", RFC 6781, DOI 10.17487/RFC6781, December 2012,
https://www.rfc-editor.org/info/rfc6781.
[RFC7583]
Morris, S., Ihren, J., Dickinson, J., and W. Mekking, "DNSSEC 密钥轮转时序考虑", RFC 7583, DOI 10.17487/RFC7583, October 2015,
https://www.rfc-editor.org/info/rfc7583.
[RFC8080]
Sury, O. and R. Edmonds, "用于 DNSSEC 的 Edwards-Curve Digital Security Algorithm (EdDSA)", RFC 8080, DOI 10.17487/RFC8080, February 2017,
https://www.rfc-editor.org/info/rfc8080.
[RFC8624]
Wouters, P. and O. Sury, "DNSSEC 的算法实现要求和使用指南", RFC 8624, DOI 10.17487/RFC8624, June 2019,
https://www.rfc-editor.org/info/rfc8624.
[RFC9364]
Hoffman, P., "DNS Security Extensions (DNSSEC)", BCP 237, RFC 9364, DOI 10.17487/RFC9364, February 2023,
https://www.rfc-editor.org/info/rfc9364.
[TLS-ciphersuites]
IANA, "Transport Layer Security (TLS) Parameters (TLS 参数)",
https://www.iana.org/assignments/tls-parameters.