Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Connotech Experts Conseils Inc
Original Assignee
Connotech Experts Conseils Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Connotech Experts Conseils IncfiledCriticalConnotech Experts Conseils Inc
Priority to CA2686142ApriorityCriticalpatent/CA2686142A1/en
Publication of CA2686142A1publicationCriticalpatent/CA2686142A1/en
H04L61/4505—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
H04L61/4511—Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
H—ELECTRICITY
H04—ELECTRIC COMMUNICATION TECHNIQUE
H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
H04L63/00—Network architectures or network communication protocols for network security
H04L63/12—Applying verification of the received information
1. A method of servicing a signed DNS root zone to a network from at least one host in a first set of hosts where a) substantially the same DNS root zone is being serviced concurrently from at least one node in a second set of hosts, b) the zone apex NS RRset serviced from hosts in said first set contains the respective domain names of hosts in said first set and is signed with a digital signature key pair, and c) the zone apex NS RRset serviced from hosts in said second set contains the respective domain names of hosts in said second set and is signed with said digital signature key pair.
2. A method of preparing a DNS root zone for DNSSEC service to a network where a) a plurality of variants is prepared with substantially the same signed DNS root zone contents, b) each of said plurality of variants has a zone apex NS RRset containing a set of domain names non intersecting with other variants, c) each of said plurality of variants has its zone apex NS RRset signed with a common digital signature key pair, and d) each of said plurality of variants have signature inception and expiration times allowing ordinarily concurrent DNSSEC servicing of said DNS root zone.
CA2686142A2009-11-202009-11-20Alternate dns root nameservice for dnssec purposesAbandonedCA2686142A1 (en)
Technique for enabling multiple virtual file servers on a single file server to participate in multiple address spaces with overlapping network addresses