Document Title Date Status AD/Sheperd
RFC 2065
(was draft-ietf-dnssec-secext)
Domain Name System Security Extensions 1997-01 RFC 2065 (Proposed Standard)
Obsoleted by RFC2535
RFC 2137
(was draft-ietf-dnssec-update)
Secure Domain Name System Dynamic Update 1997-04 RFC 2137 (Proposed Standard)
Obsoleted by RFC3007
RFC 2535
(was draft-ietf-dnssec-secext2)
Domain Name System Security Extensions 1999-03 RFC 2535 (Proposed Standard)
RFC 2536
(was draft-ietf-dnssec-dss)
DSA KEYs and SIGs in the Domain Name System (DNS) 1999-03 RFC 2536 (Proposed Standard)
Updated by RFC6944
RFC 2537
(was draft-ietf-dnssec-rsa)
RSA/MD5 KEYs and SIGs in the Domain Name System (DNS) 1999-03 RFC 2537 (Proposed Standard)
Obsoleted by RFC3110
RFC 2538
(was draft-ietf-dnssec-certs)
Storing Certificates in the Domain Name System (DNS) 1999-03 RFC 2538 (Proposed Standard)
Obsoleted by RFC4398
RFC 2539
(was draft-ietf-dnssec-dhk)
Storage of Diffie-Hellman Keys in the Domain Name System (DNS) 1999-03 RFC 2539 (Proposed Standard)
Updated by RFC6944
RFC 2540
(was draft-ietf-dnssec-ddi)
Detached Domain Name System (DNS) Information 1999-03 RFC 2540 (Experimental)
RFC 2541
(was draft-ietf-dnssec-secops)
DNS Security Operational Considerations 1999-03 RFC 2541 (Informational)
Obsoleted by RFC4641
RFC 3008
(was draft-ietf-dnsext-signing-auth)
Domain Name System Security (DNSSEC) Signing Authority 2000-11 RFC 3008 (Proposed Standard)
Updated by RFC3658
RFC 3130
(was draft-lewis-state-of-dnssec)
Notes from the State-Of-The-Technology: DNSSEC 2001-06 RFC 3130 (Informational)
RFC 3225
(was draft-ietf-dnsext-dnssec-okbit)
Indicating Resolver Support of DNSSEC 2001-12 RFC 3225 (Proposed Standard)
RFC 3226
(was draft-ietf-dnsext-message-size)
DNSSEC and IPv6 A6 aware server/resolver message size requirements 2001-12 RFC 3226 (Proposed Standard)
RFC 3445
(was draft-ietf-dnsext-restrict-key-for-dnssec)
Limiting the Scope of the KEY Resource Record (RR) 2002-12 RFC 3445 (Proposed Standard) Erik Nordmark
RFC 3755
(was draft-ietf-dnsext-dnssec-2535typecode-change)
Legacy Resolver Compatibility for Delegation Signer (DS) 2004-05 RFC 3755 (Proposed Standard)
Updated by RFC3757 , RFC3845
Thomas Narten
RFC 3845
(was draft-ietf-dnsext-nsec-rdata)
DNS Security (DNSSEC) NextSECure (NSEC) RDATA Format 2004-08 RFC 3845 (Proposed Standard) Thomas Narten
RFC 4033
(was draft-ietf-dnsext-dnssec-intro)
DNS Security Introduction and Requirements 2005-03 RFC 4033 (Proposed Standard)
Updated by RFC6014 , RFC6840
Thomas Narten
RFC 4034
(was draft-ietf-dnsext-dnssec-records)
Resource Records for the DNS Security Extensions 2005-03 RFC 4034 (Proposed Standard) Thomas Narten
RFC 4035
(was draft-ietf-dnsext-dnssec-protocol)
Protocol Modifications for the DNS Security Extensions 2005-03 RFC 4035 (Proposed Standard) Thomas Narten
RFC 4431
(was draft-andrews-dlv-dns-rr)
The DNSSEC Lookaside Validation (DLV) DNS Resource Record 2006-02 RFC 4431 (Informational) Margaret Wasserman
RFC 4470
(was draft-ietf-dnsext-dnssec-online-signing)
Minimally Covering NSEC Records and DNSSEC On-line Signing 2006-04 RFC 4470 (Proposed Standard) Margaret Wasserman
RFC 4509
(was draft-ietf-dnsext-ds-sha256)
Use of SHA-256 in DNSSEC Delegation Signer (DS) Resource Records (RRs) 2006-05 RFC 4509 (Proposed Standard) Margaret Wasserman
RFC 4641
(was draft-ietf-dnsop-dnssec-operational-practices)
DNSSEC Operational Practices 2006-09 RFC 4641 (Informational)
Obsoleted by RFC6781
David Kessens
RFC 4955
(was draft-ietf-dnsext-dnssec-experiments)
DNS Security (DNSSEC) Experiments 2007-07 RFC 4955 (Proposed Standard) Mark Townsley
RFC 4956
(was draft-ietf-dnsext-dnssec-opt-in)
DNS Security (DNSSEC) Opt-In 2007-07 RFC 4956 (Experimental) Mark Townsley
RFC 4986
(was draft-ietf-dnsext-rollover-requirements)
Requirements Related to DNS Security (DNSSEC) Trust Anchor Rollover 2007-08 RFC 4986 (Informational) Mark Townsley
RFC 5011
(was draft-ietf-dnsext-trustupdate-timers)
Automated Updates of DNS Security (DNSSEC) Trust Anchors 2007-09 RFC 5011 (Internet Standard) Mark Townsley
RFC 5074
(was draft-weiler-dnssec-dlv)
DNSSEC Lookaside Validation (DLV) 2007-11 RFC 5074 (Informational) Russ Housley
RFC 5155
(was draft-ietf-dnsext-nsec3)
DNS Security (DNSSEC) Hashed Authenticated Denial of Existence 2008-03 RFC 5155 (Proposed Standard)
Updated by RFC6840 , RFC6944
Mark Townsley
RFC 5702
(was draft-ietf-dnsext-dnssec-rsasha256)
Use of SHA-2 Algorithms with RSA in DNSKEY and RRSIG Resource Records for DNSSEC 2009-10 RFC 5702 (Proposed Standard)
Updated by RFC6944
Ralph Droms
RFC 5933
(was draft-ietf-dnsext-dnssec-gost)
Use of GOST Signature Algorithms in DNSKEY and RRSIG Resource Records for DNSSEC 2010-07 RFC 5933 (Proposed Standard)
Updated by RFC6944
Ralph Droms
RFC 6014
(was draft-ietf-dnsext-dnssec-alg-allocation)
Cryptographic Algorithm Identifier Allocation for DNSSEC 2010-11 RFC 6014 (Proposed Standard) Ralph Droms
RFC 6605
(was draft-ietf-dnsext-ecdsa)
Elliptic Curve Digital Signature Algorithm (DSA) for DNSSEC 2012-04 RFC 6605 (Proposed Standard) Ralph Droms
RFC 6725
(was draft-ietf-dnsext-dnssec-registry-update)
DNS Security (DNSSEC) DNSKEY Algorithm IANA Registry Updates 2012-08 RFC 6725 (Proposed Standard) Ralph Droms
RFC 6781
(was draft-ietf-dnsop-rfc4641bis)
DNSSEC Operational Practices, Version 2 2012-12 RFC 6781 (Informational) Ron Bonica
Peter Koch
RFC 6840
(was draft-ietf-dnsext-dnssec-bis-updates)
Clarifications and Implementation Notes for DNS Security (DNSSEC) 2013-02 RFC 6840 (Proposed Standard) Ralph Droms
Andrew Sullivan
RFC 6841
(was draft-ietf-dnsop-dnssec-dps-framework)
A Framework for DNSSEC Policies and DNSSEC Practice Statements 2013-01 RFC 6841 (Informational) Ron Bonica
Stephen Morris
RFC 6944
(was draft-ietf-dnsext-dnssec-algo-imp-status)
Applicability Statement: DNS Security (DNSSEC) DNSKEY Algorithm Implementation Status 2013-04 RFC 6944 (Proposed Standard) Ralph Droms
RFC 6975
(was draft-ietf-dnsext-dnssec-algo-signal)
Signaling Cryptographic Algorithm Understanding in DNS Security Extensions (DNSSEC) 2013-07 RFC 6975 (Proposed Standard) Ted Lemon
RFC 7344
(was draft-ietf-dnsop-delegation-trust-maintainance)
Automating DNSSEC Delegation Trust Maintenance 2014-09 RFC 7344 (Informational) Joel Jaeggli
Tim Wicinski