DNSSEC Impact on Registries - APRICOT

[Pages:76]DNSSEC Impact on Registries

Edward Lewis, Neustar Jakob Schlyter, .SE

February 22, 2005

APRICOT Tutorial T11-3

1

Agenda

? What is a Registry, how is it run? ? Steps Towards Internal DNSSEC ? Steps Towards External DNSSEC ? Tough Issues

February 22, 2005

APRICOT Tutorial T11-3

2

Registries & DNSSEC

? Why cover this topic? ? DNSSEC needs a hierarchy of public

keys

? Root covers TLD ? TLD covers next level, ... ? downward to data

? Registries enable building the hierarchy

February 22, 2005

APRICOT Tutorial T11-3

3

DNS tree and DNSSEC

Root zone "." SOA, DNSKEY

jp. NS, DS

DS "points to" DNSKEY

JP zone jp SOA, DNSKEY

ad.jp NS, DS

WIDE Project zone wide.ad.jp SOA, DNSKEY

JP Admin Zone ad.jp SOA DNSKEY

wide.ad.jp NS, DS

JPRS

February 22, 2005

APRICOT Tutorial T11-3

4

What is a Registry?

Registries come in many forms:

? Name Registry, e.g., .edu, .jp, .kr, .cn, .tw ? Number Registry, e.g., APNIC ? Routing Registry, e.g., RADB ? Non-Internet Registries too

? We will stay with name registries and number registries ("Internet registries")

February 22, 2005

APRICOT Tutorial T11-3

5

Others Involved

? Registrant = Whoever gets the name or address space

? DNS Operator = Whoever runs the DNS for the Registrant (sometimes the same)

? Registrar = A "retailer" for some Registries

February 22, 2005

APRICOT Tutorial T11-3

6

Registry Environment

? The job of a registry is to relate resource (domain) to a user (registrant)

? Registries get requests

? Directly from Registrants (and/or) ? Indirectly via Registrars

? Registries supply publication services

? WhoIs, IRIS, DNS, sometimes routing

February 22, 2005

APRICOT Tutorial T11-3

7

Registry Context

Registrar (or NIR) and/or

Registry Interface Registry Functions

WWhhooIsIs IRIRISIS

Registry Database

DNS Master Registry

DNS Slave DNS Slave DNS Slave DNS Slave

Registrants - Internet - DNS Operators

February 22, 2005

APRICOT Tutorial T11-3

8

................
................

In order to avoid copyright disputes, this page is only a partial summary.

Google Online Preview   Download

To fulfill the demand for quickly locating and searching documents.

It is intelligent file search solution for home and business.

Literature Lottery

Related download
Related searches

©2024 5y1.org, Inc. All rights reserved.