Poor Man's Hardware Security Module (pmHSM)
2016pp. 59–64
Citations Over Time
Francisco Cifuentes, Alejandro Hevia, Francisco Montoto, Tomás Barros, Victor Ramiro, Javier Bustos-Jiménez
Abstract
The DNS Security Extensions (DNSSEC) add a new layer of security based on public-key infrastructure: each DNS record is digitally signed to verify the authenticity of the answer. However, the introduction of DNSSEC has an impact in the operational workflow of DNS systems: (i) signatures have an expiration date, hence the records must be periodically signed and (ii) key management tasks can be overwhelming. These are problems specially for DNS zones with several records (for instance a Top Level Domain).
Related Papers
- → Foundation Techniques and Cooperation Test of Fault-tolerant Domain Name Servers for Internet Name Resolution(2011)1 cited
- → What's in a name [Internet Domain Name System](2003)2 cited
- Using Recursive Name-Server to Resolve DNS(2011)
- → Global Internet Come into a New DNS Era(2019)
- Domain Name System Uniform Resource Identifiers for DNS over HTTPS and DNS over TLS(1999)