Information Series on DNS: Part 12
The following series of articles details information of DNS Records, we are covering each setting in the series, providing basic use and purpose.
What are SIG records, what are they used for, and how do they work?
The details of the SIG records are identified in RFC 2535. These records consist of the information about the type of RR that is signed, the timing of the signature, when will it expire, its time to live, and the algorithm. These records are also known for providing an additional level of security to all DNS-related transactions. There can be one or multiple SIG records that could be used to cover different RR sets. The records are mainly used in the TKEY as well as SIG.
What are SMIMEA records, what are they used for, and how do they work?
The SMIMEA records are mainly used for the sender authentication purpose. It links the public key with the email address. To put it in simple words, this record associates the SMIMEA certificate with the domain name. The records are identified by RFC 8162, and these records are to DNSSEC signed. The main purpose of the SMIMEA records is to verify the public key found in the DNS records.
What are SOA Records, what are they used for, and how do they work?
The SOA records contain crucial data about the particular domain. It tells you everything you need to know about the particular domain zone, including the information regarding when the domain was created, the email of the administrator, when it was updated, and so on. Every domain name has to have SOA records in order to comply with the IETF standards.
Not only do these records provide information about the domain, but they are important for zone transfers and other applications. The SOA records feature four major elements, i.e. primary nameserver of the domain, refresh time, retry, and the expiration time. The records are identified by RFC 1035 and RFC 2308. The SOA records provide authoritative data about different DNS zones. It mainly includes the email address of the administrator, primary nameserver, serial number of the domain, and the timers regarding the refreshing time.