{"draft":"draft-ietf-dnsop-nsec-ttl-05","doc_id":"RFC9077","title":"NSEC and NSEC3: TTLs and Aggressive Use","authors":["P. van Dijk"],"format":["HTML","TEXT","PDF","XML"],"page_count":"8","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"Domain Name System Operations","abstract":"Due to a combination of unfortunate wording in earlier documents,\r\naggressive use of NSEC and NSEC3 records may deny the existence of\r\nnames far beyond the intended lifetime of a denial. This document\r\nchanges the definition of the NSEC and NSEC3 TTL to correct that\r\nsituation. This document updates RFCs 4034, 4035, 5155, and 8198.","pub_date":"July 2021","keywords":["DNSSEC","negative cache","Denial of Existence"],"obsoletes":[],"obsoleted_by":[],"updates":["RFC4034","RFC4035","RFC5155","RFC8198"],"updated_by":[],"see_also":[],"doi":"10.17487\/RFC9077","errata_url":null}