413 lines
8.6 KiB
JSON
413 lines
8.6 KiB
JSON
|
{
|
||
|
"title":"DNSSEC and DANE",
|
||
|
"description":"Method of validating a DNS response against a trusted root server. Mitigates various attacks that could reroute a user to a fake site while showing the real URL for the original site.",
|
||
|
"spec":"https://tools.ietf.org/html/rfc4033",
|
||
|
"status":"other",
|
||
|
"links":[
|
||
|
{
|
||
|
"url":"https://en.wikipedia.org/wiki/Domain_Name_System_Security_Extensions",
|
||
|
"title":"Wikipedia - DNSSEC"
|
||
|
},
|
||
|
{
|
||
|
"url":"https://bugs.chromium.org/p/chromium/issues/detail?id=50874",
|
||
|
"title":"Chrome implementation bug"
|
||
|
},
|
||
|
{
|
||
|
"url":"https://bugzilla.mozilla.org/show_bug.cgi?id=672600",
|
||
|
"title":"Firefox implementation bug"
|
||
|
}
|
||
|
],
|
||
|
"bugs":[
|
||
|
|
||
|
],
|
||
|
"categories":[
|
||
|
"Security"
|
||
|
],
|
||
|
"stats":{
|
||
|
"ie":{
|
||
|
"5.5":"a #1",
|
||
|
"6":"a #1",
|
||
|
"7":"a #1",
|
||
|
"8":"a #1",
|
||
|
"9":"a #1",
|
||
|
"10":"a #1",
|
||
|
"11":"a #1"
|
||
|
},
|
||
|
"edge":{
|
||
|
"12":"a #1",
|
||
|
"13":"a #1",
|
||
|
"14":"a #1",
|
||
|
"15":"a #1",
|
||
|
"16":"a #1",
|
||
|
"17":"a #1",
|
||
|
"18":"a #1",
|
||
|
"79":"a #1",
|
||
|
"80":"a #1",
|
||
|
"81":"a #1",
|
||
|
"83":"a #1",
|
||
|
"84":"a #1"
|
||
|
},
|
||
|
"firefox":{
|
||
|
"2":"a #1",
|
||
|
"3":"a #1",
|
||
|
"3.5":"a #1",
|
||
|
"3.6":"a #1",
|
||
|
"4":"a #1",
|
||
|
"5":"a #1",
|
||
|
"6":"a #1",
|
||
|
"7":"a #1",
|
||
|
"8":"a #1",
|
||
|
"9":"a #1",
|
||
|
"10":"a #1",
|
||
|
"11":"a #1",
|
||
|
"12":"a #1",
|
||
|
"13":"a #1",
|
||
|
"14":"a #1",
|
||
|
"15":"a #1",
|
||
|
"16":"a #1",
|
||
|
"17":"a #1",
|
||
|
"18":"a #1",
|
||
|
"19":"a #1",
|
||
|
"20":"a #1",
|
||
|
"21":"a #1",
|
||
|
"22":"a #1",
|
||
|
"23":"a #1",
|
||
|
"24":"a #1",
|
||
|
"25":"a #1",
|
||
|
"26":"a #1",
|
||
|
"27":"a #1",
|
||
|
"28":"a #1",
|
||
|
"29":"a #1",
|
||
|
"30":"a #1",
|
||
|
"31":"a #1",
|
||
|
"32":"a #1",
|
||
|
"33":"a #1",
|
||
|
"34":"a #1",
|
||
|
"35":"a #1",
|
||
|
"36":"a #1",
|
||
|
"37":"a #1",
|
||
|
"38":"a #1",
|
||
|
"39":"a #1",
|
||
|
"40":"a #1",
|
||
|
"41":"a #1",
|
||
|
"42":"a #1",
|
||
|
"43":"a #1",
|
||
|
"44":"a #1",
|
||
|
"45":"a #1",
|
||
|
"46":"a #1",
|
||
|
"47":"a #1",
|
||
|
"48":"a #1",
|
||
|
"49":"a #1",
|
||
|
"50":"a #1",
|
||
|
"51":"a #1",
|
||
|
"52":"a #1",
|
||
|
"53":"a #1",
|
||
|
"54":"a #1",
|
||
|
"55":"a #1",
|
||
|
"56":"a #1",
|
||
|
"57":"a #1",
|
||
|
"58":"a #1",
|
||
|
"59":"a #1",
|
||
|
"60":"a #1",
|
||
|
"61":"a #1",
|
||
|
"62":"a #1",
|
||
|
"63":"a #1",
|
||
|
"64":"a #1",
|
||
|
"65":"a #1",
|
||
|
"66":"a #1",
|
||
|
"67":"a #1",
|
||
|
"68":"a #1",
|
||
|
"69":"a #1",
|
||
|
"70":"a #1",
|
||
|
"71":"a #1",
|
||
|
"72":"a #1",
|
||
|
"73":"a #1",
|
||
|
"74":"a #1",
|
||
|
"75":"a #1",
|
||
|
"76":"a #1",
|
||
|
"77":"a #1",
|
||
|
"78":"a #1",
|
||
|
"79":"a #1",
|
||
|
"80":"a #1",
|
||
|
"81":"a #1",
|
||
|
"82":"a #1"
|
||
|
},
|
||
|
"chrome":{
|
||
|
"4":"a #1",
|
||
|
"5":"a #1",
|
||
|
"6":"a #1 #2",
|
||
|
"7":"a #1 #2",
|
||
|
"8":"a #1 #2",
|
||
|
"9":"a #1 #2",
|
||
|
"10":"a #1 #2",
|
||
|
"11":"a #1 #2",
|
||
|
"12":"a #1 #2",
|
||
|
"13":"a #1 #2",
|
||
|
"14":"a #1 #2",
|
||
|
"15":"a #1 #2",
|
||
|
"16":"a #1 #2",
|
||
|
"17":"a #1 #2",
|
||
|
"18":"a #1 #2",
|
||
|
"19":"a #1 #2",
|
||
|
"20":"a #1 #2",
|
||
|
"21":"a #1 #2",
|
||
|
"22":"a #1 #2",
|
||
|
"23":"a #1 #2",
|
||
|
"24":"a #1 #2",
|
||
|
"25":"a #1 #2",
|
||
|
"26":"a #1 #2",
|
||
|
"27":"a #1 #2",
|
||
|
"28":"a #1 #2",
|
||
|
"29":"a #1 #2",
|
||
|
"30":"a #1 #2",
|
||
|
"31":"a #1",
|
||
|
"32":"a #1",
|
||
|
"33":"a #1",
|
||
|
"34":"a #1",
|
||
|
"35":"a #1",
|
||
|
"36":"a #1",
|
||
|
"37":"a #1",
|
||
|
"38":"a #1",
|
||
|
"39":"a #1",
|
||
|
"40":"a #1",
|
||
|
"41":"a #1",
|
||
|
"42":"a #1",
|
||
|
"43":"a #1",
|
||
|
"44":"a #1",
|
||
|
"45":"a #1",
|
||
|
"46":"a #1",
|
||
|
"47":"a #1",
|
||
|
"48":"a #1",
|
||
|
"49":"a #1",
|
||
|
"50":"a #1",
|
||
|
"51":"a #1",
|
||
|
"52":"a #1",
|
||
|
"53":"a #1",
|
||
|
"54":"a #1",
|
||
|
"55":"a #1",
|
||
|
"56":"a #1",
|
||
|
"57":"a #1",
|
||
|
"58":"a #1",
|
||
|
"59":"a #1",
|
||
|
"60":"a #1",
|
||
|
"61":"a #1",
|
||
|
"62":"a #1",
|
||
|
"63":"a #1",
|
||
|
"64":"a #1",
|
||
|
"65":"a #1",
|
||
|
"66":"a #1",
|
||
|
"67":"a #1",
|
||
|
"68":"a #1",
|
||
|
"69":"a #1",
|
||
|
"70":"a #1",
|
||
|
"71":"a #1",
|
||
|
"72":"a #1",
|
||
|
"73":"a #1",
|
||
|
"74":"a #1",
|
||
|
"75":"a #1",
|
||
|
"76":"a #1",
|
||
|
"77":"a #1",
|
||
|
"78":"a #1",
|
||
|
"79":"a #1",
|
||
|
"80":"a #1",
|
||
|
"81":"a #1",
|
||
|
"83":"a #1",
|
||
|
"84":"a #1",
|
||
|
"85":"a #1",
|
||
|
"86":"a #1",
|
||
|
"87":"a #1",
|
||
|
"88":"a #1"
|
||
|
},
|
||
|
"safari":{
|
||
|
"3.1":"a #1",
|
||
|
"3.2":"a #1",
|
||
|
"4":"a #1",
|
||
|
"5":"a #1",
|
||
|
"5.1":"a #1",
|
||
|
"6":"a #1",
|
||
|
"6.1":"a #1",
|
||
|
"7":"a #1",
|
||
|
"7.1":"a #1",
|
||
|
"8":"a #1",
|
||
|
"9":"a #1",
|
||
|
"9.1":"a #1",
|
||
|
"10":"a #1",
|
||
|
"10.1":"a #1",
|
||
|
"11":"a #1",
|
||
|
"11.1":"a #1",
|
||
|
"12":"a #1",
|
||
|
"12.1":"a #1",
|
||
|
"13":"a #1",
|
||
|
"13.1":"a #1",
|
||
|
"14":"a #1",
|
||
|
"TP":"a #1"
|
||
|
},
|
||
|
"opera":{
|
||
|
"9":"a #1",
|
||
|
"9.5-9.6":"a #1",
|
||
|
"10.0-10.1":"a #1",
|
||
|
"10.5":"a #1",
|
||
|
"10.6":"a #1",
|
||
|
"11":"a #1",
|
||
|
"11.1":"a #1",
|
||
|
"11.5":"a #1",
|
||
|
"11.6":"a #1",
|
||
|
"12":"a #1",
|
||
|
"12.1":"a #1",
|
||
|
"15":"a #1",
|
||
|
"16":"a #1",
|
||
|
"17":"a #1",
|
||
|
"18":"a #1",
|
||
|
"19":"a #1",
|
||
|
"20":"a #1",
|
||
|
"21":"a #1",
|
||
|
"22":"a #1",
|
||
|
"23":"a #1",
|
||
|
"24":"a #1",
|
||
|
"25":"a #1",
|
||
|
"26":"a #1",
|
||
|
"27":"a #1",
|
||
|
"28":"a #1",
|
||
|
"29":"a #1",
|
||
|
"30":"a #1",
|
||
|
"31":"a #1",
|
||
|
"32":"a #1",
|
||
|
"33":"a #1",
|
||
|
"34":"a #1",
|
||
|
"35":"a #1",
|
||
|
"36":"a #1",
|
||
|
"37":"a #1",
|
||
|
"38":"a #1",
|
||
|
"39":"a #1",
|
||
|
"40":"a #1",
|
||
|
"41":"a #1",
|
||
|
"42":"a #1",
|
||
|
"43":"a #1",
|
||
|
"44":"a #1",
|
||
|
"45":"a #1",
|
||
|
"46":"a #1",
|
||
|
"47":"a #1",
|
||
|
"48":"a #1",
|
||
|
"49":"a #1",
|
||
|
"50":"a #1",
|
||
|
"51":"a #1",
|
||
|
"52":"a #1",
|
||
|
"53":"a #1",
|
||
|
"54":"a #1",
|
||
|
"55":"a #1",
|
||
|
"56":"a #1",
|
||
|
"57":"a #1",
|
||
|
"58":"a #1",
|
||
|
"60":"a #1",
|
||
|
"62":"a #1",
|
||
|
"63":"a #1",
|
||
|
"64":"a #1",
|
||
|
"65":"a #1",
|
||
|
"66":"a #1",
|
||
|
"67":"a #1",
|
||
|
"68":"a #1",
|
||
|
"69":"a #1",
|
||
|
"70":"a #1"
|
||
|
},
|
||
|
"ios_saf":{
|
||
|
"3.2":"a #1",
|
||
|
"4.0-4.1":"a #1",
|
||
|
"4.2-4.3":"a #1",
|
||
|
"5.0-5.1":"a #1",
|
||
|
"6.0-6.1":"a #1",
|
||
|
"7.0-7.1":"a #1",
|
||
|
"8":"a #1",
|
||
|
"8.1-8.4":"a #1",
|
||
|
"9.0-9.2":"a #1",
|
||
|
"9.3":"a #1",
|
||
|
"10.0-10.2":"a #1",
|
||
|
"10.3":"a #1",
|
||
|
"11.0-11.2":"a #1",
|
||
|
"11.3-11.4":"a #1",
|
||
|
"12.0-12.1":"a #1",
|
||
|
"12.2-12.4":"a #1",
|
||
|
"13.0-13.1":"a #1",
|
||
|
"13.2":"a #1",
|
||
|
"13.3":"a #1",
|
||
|
"13.4-13.5":"a #1",
|
||
|
"14.0":"a #1"
|
||
|
},
|
||
|
"op_mini":{
|
||
|
"all":"a #1"
|
||
|
},
|
||
|
"android":{
|
||
|
"2.1":"a #1",
|
||
|
"2.2":"a #1",
|
||
|
"2.3":"a #1",
|
||
|
"3":"a #1",
|
||
|
"4":"a #1",
|
||
|
"4.1":"a #1",
|
||
|
"4.2-4.3":"a #1",
|
||
|
"4.4":"a #1",
|
||
|
"4.4.3-4.4.4":"a #1",
|
||
|
"81":"a #1"
|
||
|
},
|
||
|
"bb":{
|
||
|
"7":"a #1",
|
||
|
"10":"a #1"
|
||
|
},
|
||
|
"op_mob":{
|
||
|
"10":"a #1",
|
||
|
"11":"a #1",
|
||
|
"11.1":"a #1",
|
||
|
"11.5":"a #1",
|
||
|
"12":"a #1",
|
||
|
"12.1":"a #1",
|
||
|
"46":"a #1"
|
||
|
},
|
||
|
"and_chr":{
|
||
|
"84":"a #1"
|
||
|
},
|
||
|
"and_ff":{
|
||
|
"79":"a #1"
|
||
|
},
|
||
|
"ie_mob":{
|
||
|
"10":"a #1",
|
||
|
"11":"a #1"
|
||
|
},
|
||
|
"and_uc":{
|
||
|
"12.12":"a #1"
|
||
|
},
|
||
|
"samsung":{
|
||
|
"4":"a #1",
|
||
|
"5.0-5.4":"a #1",
|
||
|
"6.2-6.4":"a #1",
|
||
|
"7.2-7.4":"a #1",
|
||
|
"8.2":"a #1",
|
||
|
"9.2":"a #1",
|
||
|
"10.1":"a #1",
|
||
|
"11.1-11.2":"a #1",
|
||
|
"12.0":"a #1"
|
||
|
},
|
||
|
"and_qq":{
|
||
|
"10.4":"a #1"
|
||
|
},
|
||
|
"baidu":{
|
||
|
"7.12":"a #1"
|
||
|
},
|
||
|
"kaios":{
|
||
|
"2.5":"a #1"
|
||
|
}
|
||
|
},
|
||
|
"notes":"Browsers have generally decided to not implement DNSSEC validation because the added complexity outweighs the improvements to the browser. DNSSEC is still useful as it is widely used to protect delivery of records between DNS servers, only failing to protect the delivery from the last DNS server to the browser.\r\n\r\n[Certificate transparency](https://developer.mozilla.org/en-US/docs/Web/Security/Certificate_Transparency) is widely used and tries to provide the same security as DNSSEC but by very different means.",
|
||
|
"notes_by_num":{
|
||
|
"1":"Does not support DNSSEC but still benefits greatly from it, as most of the security improvements are gained in the DNS-network and not in the browser.",
|
||
|
"2":"Early versions of Chrome [experimented](https://www.imperialviolet.org/2011/06/16/dnssecchrome.html) with browser-level validation."
|
||
|
},
|
||
|
"usage_perc_y":0,
|
||
|
"usage_perc_a":98.71,
|
||
|
"ucprefix":false,
|
||
|
"parent":"",
|
||
|
"keywords":"DNS Security Extensions,Domain Name System Security Extensions,DNS based Authentication of Named Entities",
|
||
|
"ie_id":"",
|
||
|
"chrome_id":"",
|
||
|
"firefox_id":"",
|
||
|
"webkit_id":"",
|
||
|
"shown":true
|
||
|
}
|