Class EPPSecDNSAlgorithm
java.lang.Object
com.verisign.epp.codec.secdnsext.v11.EPPSecDNSAlgorithm
http://www.ietf.org/rfc/rfc4034.txt
A.1. DNSSEC Algorithm Types
The DNSKEY, RRSIG, and DS RRs use an 8-bit number to identify the security algorithm being used. These values are stored in the "Algorithm number" field in the resource record RDATA. Some algorithms are usable only for zone signing (DNSSEC), some only for transaction security mechanisms (SIG(0) and TSIG), and some for both. Those usable for zone signing may appear in DNSKEY, RRSIG, and DS RRs. Those usable for transaction security would be present in SIG(0) and KEY RRs, as described in [RFC2931].
6 - 251 Available for assignment by IETF Standards Action.
A.1. DNSSEC Algorithm Types
The DNSKEY, RRSIG, and DS RRs use an 8-bit number to identify the security algorithm being used. These values are stored in the "Algorithm number" field in the resource record RDATA. Some algorithms are usable only for zone signing (DNSSEC), some only for transaction security mechanisms (SIG(0) and TSIG), and some for both. Those usable for zone signing may appear in DNSKEY, RRSIG, and DS RRs. Those usable for transaction security would be present in SIG(0) and KEY RRs, as described in [RFC2931].
| Zone | |||
| Value | Algorithm [Mnemonic] | Signing | References |
| ----- | -------------------- | --------- | ---------- |
| 0 | reserved | ||
| 1 | RSA/MD5 [RSAMD5] | n | [RFC2537] |
| 2 | Diffie-Hellman [DH] | n | [RFC2539] |
| 3 | DSA/SHA-1 [DSA] | y | [RFC2536] |
| 4 | Elliptic Curve [ECC] | TBA | |
| 5 | RSA/SHA-1 [RSASHA1] | y | [RFC3110] |
| 8 | RSA/SHA-256 [RSASHA256] | y | [draft-ietf-dnsext-dnssec-rsasha256-14] |
| 10 | RSA/SHA-512 [RSASHA512] | y | [draft-ietf-dnsext-dnssec-rsasha256-14] |
| 13 | ECDSA Curve P-256 with SHA-256 | y | [draft-ietf-dnsext-ecdsa] |
| 14 | ECDSA Curve P-384 with SHA-384 | y | [draft-ietf-dnsext-ecdsa] |
| 252 | Indirect [INDIRECT] | n | |
| 253 | Private [PRIVATEDNS] | y | |
| 254 | Private [PRIVATEOID] | y | |
| 255 | reserved |
6 - 251 Available for assignment by IETF Standards Action.
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic final intDiffie Hellman keystatic final intDSA public keystatic final intDSA-NSEC3-SHA1static final intElliptic Curve keystatic final intECDSA Curve P-256 with SHA-256static final intECDSA Curve P-384 with SHA-384static final intIndirect keys; the actual key is elsewhere.static final intPrivate algorithm, specified by domain namestatic final intPrivate algorithm, specified by OIDstatic final intRSA/MD5 public key (deprecated)static final intRSA/SHA1 public keystatic final intRSASHA1-NSEC3-SHA1static final intRSA/SHA256 public keystatic final intRSA/SHA512 public key -
Method Summary
-
Field Details
-
RSAMD5
public static final int RSAMD5RSA/MD5 public key (deprecated)- See Also:
-
DH
public static final int DHDiffie Hellman key- See Also:
-
DSA
public static final int DSADSA public key- See Also:
-
ECC
public static final int ECCElliptic Curve key- See Also:
-
RSASHA1
public static final int RSASHA1RSA/SHA1 public key- See Also:
-
DSANSEC3SHA1
public static final int DSANSEC3SHA1DSA-NSEC3-SHA1- See Also:
-
RSASHA1NSEC3SHA1
public static final int RSASHA1NSEC3SHA1RSASHA1-NSEC3-SHA1- See Also:
-
RSASHA256
public static final int RSASHA256RSA/SHA256 public key- See Also:
-
RSASHA512
public static final int RSASHA512RSA/SHA512 public key- See Also:
-
ECDSAP256SHA256
public static final int ECDSAP256SHA256ECDSA Curve P-256 with SHA-256- See Also:
-
ECDSAP384SHA384
public static final int ECDSAP384SHA384ECDSA Curve P-384 with SHA-384- See Also:
-
INDIRECT
public static final int INDIRECTIndirect keys; the actual key is elsewhere.- See Also:
-
PRIVATEDNS
public static final int PRIVATEDNSPrivate algorithm, specified by domain name- See Also:
-
PRIVATEOID
public static final int PRIVATEOIDPrivate algorithm, specified by OID- See Also:
-