Extension and Design of Securc Dynamic Updates in Domain Name Systems
作者单位:Hong-Ik University Dept.of Computer Engineering 72-1 Sangsudong Mapogu Seoul Korea 121-791 Hong-Ik University Dept.of Computer Engineering 72-1 Sangsudong Mapogu Seoul Korea 121-791 ETRl Supercomputer Center Taejon Korea ETRl Supercomputer Center Taejon Korea
会议名称:《亚太地区通信会议暨光电子通信会议》
会议日期:1999年
学科分类:12[管理学] 1201[管理学-管理科学与工程(可授管理学、工学学位)] 08[工学] 081201[工学-计算机系统结构] 0812[工学-计算机科学与技术(可授工学、理学学位)]
摘 要:Recent IETF proposals for the secure dynamic updatesin the DNS dictate that any DNS update requests arerestricted to the same zone as the requester. This limitsthe flexibility and applicability of many servers such asCA servers. In this paper we propose to use two morebits in the DNS header section to define the scope of thezones over which a dynamic update key has an updateaccess right. These bits are called scope control *** also describe how requests for dynamic updates canbe generated and processed in the resolver and the DNSservers using these scope control bits