Reply

What mechanism is used to confirm the authenticity of the DS record supplier?

Guru
Posts: 188
3766     0

Hi;

 

How can my ISP authenticate that I am the DNS admin of bank.com and that the DS record I am trying to send to them to be uploaded to .com TLD is the correct one. I mean anyone can call and supply a DS. 

 

I guess there must be a secure mechanizm for locating the DS on .com.

 

 

Kindly

Wasfi

Re: What mechanism is used to confirm the authenticity of the DS record supplier?

Adviser
Posts: 144
3767     0

Hi Wasfi,

 

When the DS record is provided to the register they should perform a verification by looking up the associated DNSKEY record for the domain on its registered authoriative name servers. If this verification fails, the DS record should be rejected and not loaded.

 

I hope that helps!

 

- Steve

Steve S.

Re: What mechanism is used to confirm the authenticity of the DS record supplier?

Guru
Posts: 188
3767     0

Thank you Steve.

Showing results for 
Search instead for 
Did you mean: 

Recommended for You

Demo: Infoblox IPAM plug-in integration with OpenStack Newton