HTTP/2 200 date: Mon, 14 Jul 2025 13:25:50 GMT content-type: text/plain; charset=utf-8 content-security-policy: default-src 'self' 'unsafe-inline' data: https://datatracker.ietf.org/ https://www.ietf.org/ https://ietf.org/ https://analytics.ietf.org https://static.ietf.org; frame-ancestors 'self' ietf.org *.ietf.org meetecho.com *.meetecho.com cross-origin-opener-policy: unsafe-none etag: W/"0139df75b7d4ebb84068ccb4e31650ce" referrer-policy: strict-origin-when-cross-origin strict-transport-security: max-age=3600; includeSubDomains vary: Cookie, Accept-Encoding x-content-type-options: nosniff x-frame-options: SAMEORIGIN cf-cache-status: MISS expires: Mon, 14 Jul 2025 17:25:50 GMT cache-control: public, max-age=14400 server: cloudflare cf-ray: 95f1592a4b6fa8b0-BLR content-encoding: gzip alt-svc: h3=":443"; ma=86400 @misc{rfc5155, series = {Request for Comments}, number = 5155, howpublished = {RFC 5155}, publisher = {RFC Editor}, doi = {10.17487/RFC5155}, url = {https://www.rfc-editor.org/info/rfc5155}, author = {Roy Arends and Geoffrey Sisson and David Blacka and Ben Laurie}, title = {{DNS Security (DNSSEC) Hashed Authenticated Denial of Existence}}, pagetotal = 52, year = 2008, month = mar, abstract = {The Domain Name System Security (DNSSEC) Extensions introduced the NSEC resource record (RR) for authenticated denial of existence. This document introduces an alternative resource record, NSEC3, which similarly provides authenticated denial of existence. However, it also provides measures against zone enumeration and permits gradual expansion of delegation-centric zones. {[}STANDARDS-TRACK{]}}, }