This site is an informal list of RFCs that relate to the DNS. The RFCs have informal annotations that might be useful to DNS implementes and security researchers. The list of DNS-related RFCs and the annotations were collected by ICANN for the benefit of the DNS community. They are not at all a part of the RFC creation process; that process happens completely within the IETF.
The value of the project is mostly in the in-line annotations. ICANN encourages anyone in the DNS community to contribute annotations to the project. The GitHub repository for the tool can be found here. There are instructions there about how to create annotations.
This list, and the tool that generated the annotated versions, was sponsored by ICANN's Office of the CTO (OCTO). Please send questions about the tool to octo@icann.org.
RFC | Title | Date | Status | Latest Ann. |
---|---|---|---|---|
1034 | Domain names - concepts and facilities | November 1987 | Internet Standard | 2022-08-15 |
1035 | Domain names - implementation and specification | November 1987 | Internet Standard | 2022-08-15 |
1123 | Requirements for Internet Hosts - Application and Support | October 1989 | Internet Standard | |
1536 | Common DNS Implementation Errors and Suggested Fixes | October 1993 | Informational | |
1912 | Common DNS Operational and Configuration Errors | February 1996 | Informational | |
1982 | Serial Number Arithmetic | August 1996 | Proposed Standard | 2022-08-15 |
1995 | Incremental Zone Transfer in DNS | August 1996 | Proposed Standard | 2022-08-15 |
1996 | A Mechanism for Prompt Notification of Zone Changes (DNS NOTIFY) | August 1996 | Proposed Standard | 2022-08-15 |
2136 | Dynamic Updates in the Domain Name System (DNS UPDATE) | April 1997 | Proposed Standard | 2022-08-15 |
2181 | Clarifications to the DNS Specification | July 1997 | Proposed Standard | 2022-08-15 |
2308 | Negative Caching of DNS Queries (DNS NCACHE) | March 1998 | Proposed Standard | 2022-08-15 |
2930 | Secret Key Establishment for DNS (TKEY RR) | September 2000 | Proposed Standard | 2022-08-15 |
2931 | DNS Request and Transaction Signatures ( SIG(0)s ) | September 2000 | Proposed Standard | 2022-08-15 |
3597 | Handling of Unknown DNS Resource Record (RR) Types | September 2003 | Proposed Standard | 2022-08-15 |
3901 | DNS IPv6 Transport Operational Guidelines | September 2004 | Best Current Practice | |
4343 | Domain Name System (DNS) Case Insensitivity Clarification | January 2006 | Proposed Standard | 2022-08-15 |
4472 | Operational Considerations and Issues with IPv6 DNS | April 2006 | Informational | |
4501 | Domain Name System Uniform Resource Identifiers | May 2006 | Proposed Standard | |
4592 | The Role of Wildcards in the Domain Name System | July 2006 | Proposed Standard | 2022-08-15 |
5001 | DNS Name Server Identifier (NSID) Option | August 2007 | Proposed Standard | 2022-08-15 |
5358 | Preventing Use of Recursive Nameservers in Reflector Attacks | October 2008 | Best Current Practice | |
5452 | Measures for Making DNS More Resilient against Forged Answers | January 2009 | Proposed Standard | 2022-08-15 |
5625 | DNS Proxy Implementation Guidelines | August 2009 | Best Current Practice | |
5936 | DNS Zone Transfer Protocol (AXFR) | June 2010 | Proposed Standard | 2022-08-15 |
5966 | DNS Transport over TCP - Implementation Requirements | August 2010 | Proposed Standard; Obsoleted by RFC 7766 | |
6303 | Locally Served DNS Zones | July 2011 | Best Current Practice | |
6604 | xNAME RCODE and Status Bits Clarification | April 2012 | Proposed Standard | 2022-08-15 |
6672 | DNAME Redirection in the DNS | June 2012 | Proposed Standard | 2022-08-15 |
6698 | The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA | August 2012 | Proposed Standard | 2022-08-15 |
6761 | Special-Use Domain Names | February 2013 | Proposed Standard | |
6762 | Multicast DNS | February 2013 | Proposed Standard | |
6891 | Extension Mechanisms for DNS (EDNS(0)) | April 2013 | Internet Standard | 2022-08-15 |
6895 | Domain Name System (DNS) IANA Considerations | April 2013 | Best Current Practice | |
7218 | Adding Acronyms to Simplify Conversations about DNS-Based Authentication of Named Entities (DANE) | April 2014 | Proposed Standard | |
7477 | Child-to-Parent Synchronization in DNS | March 2015 | Proposed Standard | 2022-08-15 |
7534 | AS112 Nameserver Operations | May 2015 | Informational | |
7671 | The DNS-Based Authentication of Named Entities (DANE) Protocol: Updates and Operational Guidance | October 2015 | Proposed Standard | |
7672 | SMTP Security via Opportunistic DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) | October 2015 | Proposed Standard | |
7673 | Using DNS-Based Authentication of Named Entities (DANE) TLSA Records with SRV Records | October 2015 | Proposed Standard | |
7686 | The ".onion" Special-Use Domain Name | October 2015 | Proposed Standard | |
7719 | DNS Terminology | December 2015 | Informational; Obsoleted by RFC 8499 | |
7766 | DNS Transport over TCP - Implementation Requirements | March 2016 | Proposed Standard | 2022-08-15 |
7816 | DNS Query Name Minimisation to Improve Privacy | March 2016 | Experimental; Obsoleted by RFC 9156 | |
7828 | The edns-tcp-keepalive EDNS0 Option | April 2016 | Proposed Standard | 2022-08-15 |
7858 | Specification for DNS over Transport Layer Security (TLS) | May 2016 | Proposed Standard | 2022-08-15 |
7871 | Client Subnet in DNS Queries | May 2016 | Informational | |
7873 | Domain Name System (DNS) Cookies | May 2016 | Proposed Standard | |
7901 | CHAIN Query Requests in DNS | June 2016 | Experimental | |
7929 | DNS-Based Authentication of Named Entities (DANE) Bindings for OpenPGP | August 2016 | Experimental | 2022-08-15 |
8020 | NXDOMAIN: There Really Is Nothing Underneath | November 2016 | Proposed Standard | |
8094 | DNS over Datagram Transport Layer Security (DTLS) | February 2017 | Experimental | |
8162 | Using Secure DNS to Associate Certificates with Domain Names for S/MIME | May 2017 | Experimental | |
8427 | Representing DNS Messages in JSON | July 2018 | Informational | |
8467 | Padding Policies for Extension Mechanisms for DNS (EDNS(0)) | October 2018 | Experimental | |
8482 | Providing Minimal-Sized Responses to DNS Queries That Have QTYPE=ANY | January 2019 | Proposed Standard | |
8483 | Yeti DNS Testbed | October 2018 | Informational | |
8484 | DNS Queries over HTTPS (DoH) | October 2018 | Proposed Standard | 2022-08-15 |
8490 | DNS Stateful Operations | March 2019 | Proposed Standard | |
8501 | Reverse DNS in IPv6 for Internet Service Providers | November 2018 | Informational | |
8552 | Scoped Interpretation of DNS Resource Records through "Underscored" Naming of Attribute Leaves | March 2019 | Best Current Practice | |
8618 | Compacted-DNS (C-DNS): A Format for DNS Packet Capture | September 2019 | Proposed Standard | |
8767 | Serving Stale Data to Improve DNS Resiliency | March 2020 | Proposed Standard | |
8906 | A Common Operational Problem in DNS Servers: Failure to Communicate | September 2020 | Best Current Practice | |
8932 | Recommendations for DNS Privacy Service Operators | October 2020 | Best Current Practice | |
8945 | Secret Key Transaction Authentication for DNS (TSIG) | November 2020 | Internet Standard | 2022-08-15 |
8976 | Message Digest for DNS Zones | February 2021 | Proposed Standard | |
9018 | Interoperable Domain Name System (DNS) Server Cookies | April 2021 | Proposed Standard | |
9076 | DNS Privacy Considerations | July 2021 | Informational | |
9103 | DNS Zone Transfer over TLS | August 2021 | Proposed Standard | 2022-08-15 |
9108 | YANG Types for DNS Classes and Resource Record Types | September 2021 | Proposed Standard | |
9156 | DNS Query Name Minimisation to Improve Privacy | November 2021 | Proposed Standard | 2018-07-16 |
9499 | DNS Terminology | March 2024 | Best Current Practice | |
9210 | DNS Transport over TCP - Operational Requirements | March 2022 | Best Current Practice | |
9250 | DNS over Dedicated QUIC Connections | May 2022 | Proposed Standard | |
9432 | DNS Catalog Zones | July 2023 | Proposed Standard | |
9460 | Service Binding and Parameter Specification via the DNS (SVCB and HTTPS Resource Records) | November 2023 | Proposed Standard | |
9476 | The .alt Special-Use Top-Level Domain | September 2023 | Proposed Standard | |
9471 | DNS Glue Requirements in Referral Responses | September 2023 | Proposed Standard | |
9499 | DNS Terminology | March 2024 | Best Current Practice | |
9520 | Negative Caching of DNS Resolution Failures | December 2023 | Proposed Standard | |
9567 | DNS Error Reporting | April 2024 | Proposed Standard |
RFC | Title | Date | Status | Latest Ann. |
---|---|---|---|---|
9364 | DNS Security Extensions (DNSSEC) | February 2023 | Best Current Practice | |
3110 | RSA/SHA-1 SIGs and RSA KEYs in the Domain Name System (DNS) | May 2001 | Proposed Standard | 2022-08-15 |
4033 | DNS Security Introduction and Requirements | March 2005 | Proposed Standard | 2022-08-15 |
4034 | Resource Records for the DNS Security Extensions | March 2005 | Proposed Standard | 2022-08-15 |
4035 | Protocol Modifications for the DNS Security Extensions | March 2005 | Proposed Standard | 2022-08-15 |
3757 | Domain Name System KEY (DNSKEY) Resource Record (RR) Secure Entry Point (SEP) Flag | April 2004 | Proposed Standard; Obsoleted by RFC 4033, RFC 4034, RFC 4035 | |
4470 | Minimally Covering NSEC Records and DNSSEC On-line Signing | April 2006 | Proposed Standard | 2022-08-15 |
4509 | Use of SHA-256 in DNSSEC Delegation Signer (DS) Resource Records (RRs) | May 2006 | Proposed Standard | 2022-08-15 |
4955 | DNS Security (DNSSEC) Experiments | July 2007 | Proposed Standard | |
4986 | Requirements Related to DNS Security (DNSSEC) Trust Anchor Rollover | August 2007 | Informational | |
5011 | Automated Updates of DNS Security (DNSSEC) Trust Anchors | September 2007 | Internet Standard | 2022-08-15 |
5155 | DNS Security (DNSSEC) Hashed Authenticated Denial of Existence | March 2008 | Proposed Standard | 2022-08-15 |
5702 | Use of SHA-2 Algorithms with RSA in DNSKEY and RRSIG Resource Records for DNSSEC | October 2009 | Proposed Standard | 2022-08-15 |
6014 | Cryptographic Algorithm Identifier Allocation for DNSSEC | November 2010 | Proposed Standard | |
6605 | Elliptic Curve Digital Signature Algorithm (DSA) for DNSSEC | April 2012 | Proposed Standard | 2022-08-15 |
6781 | DNSSEC Operational Practices, Version 2 | December 2012 | Informational | |
6840 | Clarifications and Implementation Notes for DNS Security (DNSSEC) | February 2013 | Proposed Standard | 2022-08-15 |
6944 | Applicability Statement: DNS Security (DNSSEC) DNSKEY Algorithm Implementation Status | April 2013 | Proposed Standard; Obsoleted by RFC 8624 | |
7129 | Authenticated Denial of Existence in the DNS | February 2014 | Informational | |
7344 | Automating DNSSEC Delegation Trust Maintenance | September 2014 | Proposed Standard | 2022-08-15 |
7583 | DNSSEC Key Rollover Timing Considerations | October 2015 | Informational | 2022-08-15 |
7958 | DNSSEC Trust Anchor Publication for the Root Zone | August 2016 | Informational | |
8027 | DNSSEC Roadblock Avoidance | November 2016 | Best Current Practice | |
8078 | Managing DS Records from the Parent via CDS/CDNSKEY | March 2017 | Proposed Standard | 2022-08-15 |
8080 | Edwards-Curve Digital Security Algorithm (EdDSA) for DNSSEC | February 2017 | Proposed Standard | 2022-08-15 |
8145 | Signaling Trust Anchor Knowledge in DNS Security Extensions (DNSSEC) | April 2017 | Proposed Standard | |
8198 | Aggressive Use of DNSSEC-Validated Cache | July 2017 | Proposed Standard | 2022-08-15 |
8624 | Algorithm Implementation Requirements and Usage Guidance for DNSSEC | June 2019 | Proposed Standard | 2022-08-15 |
9077 | NSEC and NSEC3: TTLs and Aggressive Use | July 2021 | Proposed Standard | |
9157 | Revised IANA Considerations for DNSSEC | December 2021 | Proposed Standard | |
9276 | Guidance for NSEC3 Parameter Settings | August 2022 | Best Current Practice |
RFC | Title | Date | Status | Latest Ann. |
---|---|---|---|---|
3454 | Preparation of Internationalized Strings ("stringprep") | December 2002 | Proposed Standard; Obsoleted by RFC 7564 | |
3490 | Internationalizing Domain Names in Applications (IDNA) | March 2003 | Proposed Standard; Obsoleted by RFC 5890, RFC 5891 | |
3491 | Nameprep: A Stringprep Profile for Internationalized Domain Names (IDN) | March 2003 | Proposed Standard; Obsoleted by RFC 5891 | |
3492 | Punycode: A Bootstring encoding of Unicode for Internationalized Domain Names in Applications (IDNA) | March 2003 | Proposed Standard | 2022-08-15 |
3743 | Joint Engineering Team (JET) Guidelines for Internationalized Domain Names (IDN) Registration and Administration for Chinese, Japanese, and Korean | April 2004 | Informational | |
4690 | Review and Recommendations for Internationalized Domain Names (IDNs) | September 2006 | Informational | |
5890 | Internationalized Domain Names for Applications (IDNA): Definitions and Document Framework | August 2010 | Proposed Standard | |
5891 | Internationalized Domain Names in Applications (IDNA): Protocol | August 2010 | Proposed Standard | 2022-08-15 |
5892 | The Unicode Code Points and Internationalized Domain Names for Applications (IDNA) | August 2010 | Proposed Standard | |
5893 | Right-to-Left Scripts for Internationalized Domain Names for Applications (IDNA) | August 2010 | Proposed Standard | |
5894 | Internationalized Domain Names for Applications (IDNA): Background, Explanation, and Rationale | August 2010 | Informational | |
5895 | Mapping Characters for Internationalized Domain Names in Applications (IDNA) 2008 | September 2010 | Informational | |
7564 | PRECIS Framework: Preparation, Enforcement, and Comparison of Internationalized Strings in Application Protocols | May 2015 | Proposed Standard; Obsoleted by RFC 8264 | |
8264 | PRECIS Framework: Preparation, Enforcement, and Comparison of Internationalized Strings in Application Protocols | October 2017 | Proposed Standard | |
8753 | Internationalized Domain Names for Applications (IDNA) Review for New Unicode Versions | April 2020 | Proposed Standard |
RFC | Title | Date | Status | Latest Ann. |
---|---|---|---|---|
7108 | A Summary of Various Mechanisms Deployed at L-Root for the Identification of Anycast Nodes | January 2014 | Informational | |
7706 | Decreasing Access Time to Root Servers by Running One on Loopback | November 2015 | Informational; Obsoleted by RFC 8806 | |
7720 | DNS Root Name Service Protocol and Deployment Requirements | December 2015 | Best Current Practice | |
7958 | DNSSEC Trust Anchor Publication for the Root Zone | August 2016 | Informational | |
8109 | Initializing a DNS Resolver with Priming Queries | March 2017 | Best Current Practice | |
8806 | Running a Root Server Local to a Resolver | June 2020 | Informational | 2020-06-01 |
RFC | Title | Date | Status | Latest Ann. |
---|---|---|---|---|
7482 | Registration Data Access Protocol (RDAP) Query Format | March 2015 | Proposed Standard; Obsoleted by RFC 9082 | |
7483 | JSON Responses for the Registration Data Access Protocol (RDAP) | March 2015 | Proposed Standard; Obsoleted by RFC 9083 | |
7484 | Finding the Authoritative Registration Data (RDAP) Service | March 2015 | Proposed Standard; Obsoleted by RFC 9224 | |
8056 | Extensible Provisioning Protocol (EPP) and Registration Data Access Protocol (RDAP) Status Mapping | January 2017 | Proposed Standard | |
8063 | Key Relay Mapping for the Extensible Provisioning Protocol | February 2017 | Proposed Standard | |
8334 | Launch Phase Mapping for the Extensible Provisioning Protocol (EPP) | March 2018 | Proposed Standard | |
8495 | Allocation Token Extension for the Extensible Provisioning Protocol (EPP) | November 2018 | Proposed Standard | |
8521 | Registration Data Access Protocol (RDAP) Object Tagging | November 2018 | Best Current Practice | |
8543 | Extensible Provisioning Protocol (EPP) Organization Mapping | March 2019 | Proposed Standard | |
8544 | Organization Extension for the Extensible Provisioning Protocol (EPP) | April 2019 | Proposed Standard | |
8590 | Change Poll Extension for the Extensible Provisioning Protocol (EPP) | May 2019 | Proposed Standard | |
8748 | Registry Fee Extension for the Extensible Provisioning Protocol (EPP) | March 2020 | Proposed Standard | |
8807 | Login Security Extension for the Extensible Provisioning Protocol (EPP) | August 2020 | Proposed Standard | |
8909 | Registry Data Escrow Specification | November 2020 | Proposed Standard | |
8977 | Registration Data Access Protocol (RDAP) Query Parameters for Result Sorting and Paging | January 2021 | Proposed Standard | |
8982 | Registration Data Access Protocol (RDAP) Partial Response | February 2021 | Proposed Standard | |
9022 | Domain Name Registration Data (DNRD) Objects Mapping | May 2021 | Proposed Standard | |
9038 | Extensible Provisioning Protocol (EPP) Unhandled Namespaces | May 2021 | Proposed Standard | |
9082 | Registration Data Access Protocol (RDAP) Query Format | June 2021 | Internet Standard | |
9083 | JSON Responses for the Registration Data Access Protocol (RDAP) | June 2021 | Internet Standard | |
9154 | Extensible Provisioning Protocol (EPP) Secure Authorization Information for Transfer | December 2021 | Proposed Standard | |
9167 | Registry Maintenance Notification for the Extensible Provisioning Protocol (EPP) | December 2021 | Proposed Standard | |
9224 | Finding the Authoritative Registration Data Access Protocol (RDAP) Service | March 2022 | Internet Standard | |
9536 | Registration Data Access Protocol (RDAP) Reverse Search | April 2024 | Proposed Standard | |
9537 | Redacted Fields in the Registration Data Access Protocol (RDAP) Response | March 2024 | Proposed Standard | |
9560 | Federated Authentication for the Registration Data Access Protocol (RDAP) Using OpenID Connect | April 2024 | Proposed Standard | |
9536 | Registration Data Access Protocol (RDAP) Reverse Search | April 2024 | Proposed Standard |
We have updated our website terms of service to provide greater transparency and promote simplification. Learn more.