Chinese Journal of Network and Information Security ›› 2017, Vol. 3 ›› Issue (3): 34-42.doi: 10.11959/j.issn.2096-109x.2017.00147

• academic paper • Previous Articles     Next Articles

Internet naming and addressing system security technology and application analysis

Cui-cui WANG1,2,Zhi-wei YAN1,2,Guang-gang GENG1,2   

  1. 1 China Internet Network Information Center,Beijing 100190,China
    2 National Engineering Laboratory for Internet Domain Name Management,Beijing 100190,China
  • Revised:2017-02-16 Online:2017-03-01 Published:2017-03-25
  • Supported by:
    The National Natural Science Foundation of China(61375039);The National Natural Science Foundation of China(61303242)


In order to ensure the security of domain name system and inter-domain routing system,Internet Engineering Task Force(IETF)proposed two kinds of security technology,namely domain name system security extention(DNSSEC)and resource public key infrastructure(RPKI).For the domain name system,DNSSEC added the digital signature to the original architecture of DNS using the public key infrastructure and it provided the authentication and integrity verification of DNS information,which became the anchor of domain name system security.For the inter-domain routing system,RPKI utilized the public key certificate to authenticate the ownership and usage rights of the Internet number resources and builds an Internet resource management system to enhance inter-domain routing security.Recently,the globally development of DNSSEC and RPKI were continuously expanding.In order to research the application of the two kinds of technology,Alexa top 1 million websites were taken as the data set to study and analyze the application status of DNSSEC and RPKI.

Key words: domain name system, inter-domain routing system, domain name system security extension, resource public key infrastructure

CLC Number: 

No Suggested Reading articles found!