{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,21]],"date-time":"2026-01-21T10:32:34Z","timestamp":1768991554569,"version":"3.49.0"},"publisher-location":"New York, NY, USA","reference-count":50,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,11,1]],"date-time":"2017-11-01T00:00:00Z","timestamp":1509494400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["CNS-1564143, CNS-1563320"],"award-info":[{"award-number":["CNS-1564143, CNS-1563320"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,11]]},"DOI":"10.1145\/3131365.3131373","type":"proceedings-article","created":{"date-parts":[[2017,11,14]],"date-time":"2017-11-14T14:40:22Z","timestamp":1510670422000},"page":"369-383","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":39,"title":["Understanding the role of registrars in DNSSEC deployment"],"prefix":"10.1145","author":[{"given":"Taejoong","family":"Chung","sequence":"first","affiliation":[{"name":"Northeastern University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Roland","family":"van Rijswijk-Deij","sequence":"additional","affiliation":[{"name":"University of Twente and SURFnet"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"David","family":"Choffnes","sequence":"additional","affiliation":[{"name":"Northeastern University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dave","family":"Levin","sequence":"additional","affiliation":[{"name":"University of Maryland"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Bruce M.","family":"Maggs","sequence":"additional","affiliation":[{"name":"Duke University and Akamai Technologies"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alan","family":"Mislove","sequence":"additional","affiliation":[{"name":"Northeastern University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Christo","family":"Wilson","sequence":"additional","affiliation":[{"name":"Northeastern University"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2017,11]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"IETF","author":"Arends R.","year":"2005","unstructured":"R. Arends , R. Austein , M. Larson , D. Massey , and S. Rose . DNS Security Introduction and Requirements. RFC 4033 , IETF , 2005 . http:\/\/www.ietf.org\/rfc\/rfc4033.txt. R. Arends, R. Austein, M. Larson, D. Massey, and S. Rose. DNS Security Introduction and Requirements. RFC 4033, IETF, 2005. http:\/\/www.ietf.org\/rfc\/rfc4033.txt."},{"key":"e_1_3_2_1_2_1","volume-title":"IETF","author":"Arends R.","year":"2005","unstructured":"R. Arends , R. Austein , M. Larson , D. Massey , and S. Rose . Protocol Modifications for the DNS Security Extensions. RFC 4035 , IETF , 2005 . http:\/\/www.ietf.org\/rfc\/rfc4035.txt. R. Arends, R. Austein, M. Larson, D. Massey, and S. Rose. Protocol Modifications for the DNS Security Extensions. RFC 4035, IETF, 2005. http:\/\/www.ietf.org\/rfc\/rfc4035.txt."},{"key":"e_1_3_2_1_3_1","volume-title":"IETF","author":"Arends R.","year":"2005","unstructured":"R. Arends , R. Austein , M. Larson , D. Massey , and S. Rose . Resource Records for the DNS Security Extensions. RFC 4034 , IETF , 2005 . http:\/\/www.ietf.org\/rfc\/rfc4034.txt. R. Arends, R. Austein, M. Larson, D. Massey, and S. Rose. Resource Records for the DNS Security Extensions. RFC 4034, IETF, 2005. http:\/\/www.ietf.org\/rfc\/rfc4034.txt."},{"key":"e_1_3_2_1_4_1","unstructured":"APNIC DNSSEC validation rate. https:\/\/stats.labs.apnic.net\/dnssec.  APNIC DNSSEC validation rate. https:\/\/stats.labs.apnic.net\/dnssec."},{"key":"e_1_3_2_1_5_1","unstructured":"Announcing Universal DNSSEC: Secure DNS for Every Domain. https:\/\/blog.cloudflare.com\/introducing-universal-dnssec.  Announcing Universal DNSSEC: Secure DNS for Every Domain. https:\/\/blog.cloudflare.com\/introducing-universal-dnssec."},{"key":"e_1_3_2_1_6_1","unstructured":"Arjan van den Berg TransIP BV. Personal Communication.  Arjan van den Berg TransIP BV. Personal Communication."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/2987443.2987455"},{"key":"e_1_3_2_1_8_1","volume-title":"End-to-End View of the DNSSEC Ecosystem. USENIX Security","author":"Chung T.","year":"2017","unstructured":"T. Chung , R. van Rijswijk-Deij , B. Chandrasekaran , D. Choffnes , D. Levin , B. M. Maggs , A. Mislove , and C. Wilson . A Longitudinal , End-to-End View of the DNSSEC Ecosystem. USENIX Security , 2017 . T. Chung, R. van Rijswijk-Deij, B. Chandrasekaran, D. Choffnes, D. Levin, B. M. Maggs, A. Mislove, and C. Wilson. A Longitudinal, End-to-End View of the DNSSEC Ecosystem. USENIX Security, 2017."},{"key":"e_1_3_2_1_9_1","volume-title":"DNSSEC in .nl","author":"Davids M.","year":"2016","unstructured":"M. Davids . DNSSEC in .nl . 2016 . https:\/\/www.sidnlabs.nl\/downloads\/presentations\/SIDN-Labs-InternetNL-20160316.pdf. M. Davids. DNSSEC in .nl. 2016. https:\/\/www.sidnlabs.nl\/downloads\/presentations\/SIDN-Labs-InternetNL-20160316.pdf."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-48965-0_43"},{"key":"e_1_3_2_1_11_1","unstructured":"DNSSEC Debugger. http:\/\/dnssec-debugger.verisignlabs.com.  DNSSEC Debugger. http:\/\/dnssec-debugger.verisignlabs.com."},{"key":"e_1_3_2_1_12_1","unstructured":"DNSSEC Deployment Report. https:\/\/rick.eng.br\/dnssecstat\/.  DNSSEC Deployment Report. https:\/\/rick.eng.br\/dnssecstat\/."},{"key":"e_1_3_2_1_13_1","unstructured":"DNSSEC for Registrars. https:\/\/www.cloudflare.com\/dns\/dnssec\/dnssec-for-registrars.  DNSSEC for Registrars. https:\/\/www.cloudflare.com\/dns\/dnssec\/dnssec-for-registrars."},{"key":"e_1_3_2_1_14_1","unstructured":"DNSSEC signzone manual pages. https:\/\/ftp.isc.org\/isc\/bind9\/cur\/9.9\/doc\/arm\/man.dnssec-signzone.html.  DNSSEC signzone manual pages. https:\/\/ftp.isc.org\/isc\/bind9\/cur\/9.9\/doc\/arm\/man.dnssec-signzone.html."},{"key":"e_1_3_2_1_15_1","unstructured":"DNSViz. http:\/\/dnsviz.net.  DNSViz. http:\/\/dnsviz.net."},{"key":"e_1_3_2_1_16_1","volume-title":"IETF","author":"Eastlake D.","year":"1999","unstructured":"D. Eastlake . Domain Name System Security Extensions. IETF RFC 2535 , IETF , 1999 . D. Eastlake. Domain Name System Security Extensions. IETF RFC 2535, IETF, 1999."},{"key":"e_1_3_2_1_17_1","volume-title":"Domain Name System Security Extensions. RFC 2065","author":"Eastlake D.","year":"1997","unstructured":"D. Eastlake and C. Kaufman . Domain Name System Security Extensions. RFC 2065 , IETF, 1997 . D. Eastlake and C. Kaufman. Domain Name System Security Extensions. RFC 2065, IETF, 1997."},{"key":"e_1_3_2_1_18_1","volume-title":"ICANN50","author":"Eklund-Lowinder A.-M.","year":"2014","unstructured":"A.-M. Eklund-Lowinder . DNSSEC Deployment in Sweden: How Do We Do It ? ICANN50 , 2014 . https:\/\/london50.icann.org\/en\/schedule\/wed-dnssec\/presentation-dnssec-deployment-sweden-25jun14-en.pdf. A.-M. Eklund-Lowinder. DNSSEC Deployment in Sweden: How Do We Do It? ICANN50, 2014. https:\/\/london50.icann.org\/en\/schedule\/wed-dnssec\/presentation-dnssec-deployment-sweden-25jun14-en.pdf."},{"key":"e_1_3_2_1_19_1","volume-title":"Let's make DNS great again!","author":"Filip O.","year":"2017","unstructured":"O. Filip . Let's make DNS great again! 2017 . https:\/\/en.blog.nic.cz\/2017\/06\/21\/lets-make-dns-great-again\/. O. Filip. Let's make DNS great again! 2017. https:\/\/en.blog.nic.cz\/2017\/06\/21\/lets-make-dns-great-again\/."},{"key":"e_1_3_2_1_21_1","unstructured":"Getting DNSSEC deployed: costs and benefits. https:\/\/www.powerdns.com\/resources\/BringingDNSSECtotheaccessproviders.pdf.  Getting DNSSEC deployed: costs and benefits. https:\/\/www.powerdns.com\/resources\/BringingDNSSECtotheaccessproviders.pdf."},{"key":"e_1_3_2_1_22_1","unstructured":"Google DNS: DNSSEC Available to Test on Cloud DNS. https:\/\/groups.google.com\/forum\/#!topic\/cloud-dns-discuss\/WXNHtB9W0bg.  Google DNS: DNSSEC Available to Test on Cloud DNS. https:\/\/groups.google.com\/forum\/#!topic\/cloud-dns-discuss\/WXNHtB9W0bg."},{"key":"e_1_3_2_1_23_1","volume-title":"IEFT","author":"Hoffman P.","year":"2002","unstructured":"P. Hoffman . SMTP Service Extension for Secure SMTP over Transport Layer Security. IETF RFC 3207 , IEFT , 2002 . P. Hoffman. SMTP Service Extension for Secure SMTP over Transport Layer Security. IETF RFC 3207, IEFT, 2002."},{"key":"e_1_3_2_1_24_1","unstructured":"How to Sign and Secure Your Domain with DNSSEC Using Domain Registrars. http:\/\/www.internetsociety.org\/deploy360\/resources\/dnssec-registrars\/.  How to Sign and Secure Your Domain with DNSSEC Using Domain Registrars. http:\/\/www.internetsociety.org\/deploy360\/resources\/dnssec-registrars\/."},{"key":"e_1_3_2_1_25_1","unstructured":"ICANN TLD DNSSEC Report. http:\/\/stats.research.icann.org\/dns\/tld_report.  ICANN TLD DNSSEC Report. http:\/\/stats.research.icann.org\/dns\/tld_report."},{"key":"e_1_3_2_1_26_1","unstructured":"Joris de Leeuw Antagonist. Personal Communication.  Joris de Leeuw Antagonist. Personal Communication."},{"key":"e_1_3_2_1_27_1","volume-title":"Black Hat","author":"Kaminsky D.","year":"2008","unstructured":"D. Kaminsky . It's the End of the Cache as We Know It . Black Hat , 2008 . https:\/\/www.blackhat.com\/presentations\/bh-jp-08\/bh-jp-08--Kaminsky\/BlackHat-Japan-08-Kaminsky-DNS08-BlackOps.pdf. D. Kaminsky. It's the End of the Cache as We Know It. Black Hat, 2008. https:\/\/www.blackhat.com\/presentations\/bh-jp-08\/bh-jp-08--Kaminsky\/BlackHat-Japan-08-Kaminsky-DNS08-BlackOps.pdf."},{"key":"e_1_3_2_1_28_1","volume-title":"IETF","author":"Kumari W.","year":"2014","unstructured":"W. Kumari , O. Gudmundsson , and G. Barwood . Automating DNSSEC Delegation Trust Maintenance. RFC 7344 , IETF , 2014 . W. Kumari, O. Gudmundsson, and G. Barwood. Automating DNSSEC Delegation Trust Maintenance. RFC 7344, IETF, 2014."},{"key":"e_1_3_2_1_29_1","volume-title":"IETF","author":"Latour J.","year":"2017","unstructured":"J. Latour , O. Gudmundsson , P. Wouters , and M. Pounsett . Third Party DNS operator to Registrars\/Registries Protocol . IETF , 2017 . J. Latour, O. Gudmundsson, P. Wouters, and M. Pounsett. Third Party DNS operator to Registrars\/Registries Protocol. IETF, 2017."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/2815675.2815693"},{"key":"e_1_3_2_1_31_1","volume-title":"USENIX Security","author":"Lian W.","year":"2013","unstructured":"W. Lian , E. Rescorla , H. Shacham , and Stefan. Measuring the Practical Impact of DNSSEC Deploymenta . USENIX Security , 2013 . W. Lian, E. Rescorla, H. Shacham, and Stefan. Measuring the Practical Impact of DNSSEC Deploymenta. USENIX Security, 2013."},{"key":"e_1_3_2_1_32_1","unstructured":"Loek Geleijn PCExtreme System Operations. Personal Communication.  Loek Geleijn PCExtreme System Operations. Personal Communication."},{"key":"e_1_3_2_1_33_1","volume-title":"IETF","author":"Mockapetris P.","year":"1987","unstructured":"P. Mockapetris . Domain Names - Concepts and Facilities. RFC 1034 , IETF , 1987 . P. Mockapetris. Domain Names - Concepts and Facilities. RFC 1034, IETF, 1987."},{"key":"e_1_3_2_1_34_1","unstructured":"R. Mohan. Slowly cracking the DNSSEC code at ICANN 43. https:\/\/afilias.info\/blogs\/ram-mohan\/slowly-cracking-dnssec-code-icann-43.  R. Mohan. Slowly cracking the DNSSEC code at ICANN 43. https:\/\/afilias.info\/blogs\/ram-mohan\/slowly-cracking-dnssec-code-icann-43."},{"key":"e_1_3_2_1_35_1","unstructured":"Nameservers and TLDs supported\/unsupported by DNSSEC. https:\/\/www.namecheap.com\/support\/knowledgebase\/article.aspx\/9718\/2232\/nameservers-and-tlds-supportedunsupported-by-dnssec.  Nameservers and TLDs supported\/unsupported by DNSSEC. https:\/\/www.namecheap.com\/support\/knowledgebase\/article.aspx\/9718\/2232\/nameservers-and-tlds-supportedunsupported-by-dnssec."},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2009.47"},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1145\/1452520.1452548"},{"key":"e_1_3_2_1_38_1","unstructured":"OpenINTEL. https:\/\/www.openintel.nl\/.  OpenINTEL. https:\/\/www.openintel.nl\/."},{"key":"e_1_3_2_1_39_1","unstructured":"Report from the IAB workshop on Internet Technology Adoption and Transition (ITAT). https:\/\/tools.ietf.org\/id\/draft-iab-itat-report-01.xml#rfc.section.3.3.  Report from the IAB workshop on Internet Technology Adoption and Transition (ITAT). https:\/\/tools.ietf.org\/id\/draft-iab-itat-report-01.xml#rfc.section.3.3."},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-16161-2_27"},{"key":"e_1_3_2_1_41_1","volume-title":"IETF","author":"Shelby Z.","year":"2012","unstructured":"Z. Shelby . Constrained RESTful Environments (CoRE) Link Format. RFC 6690 , IETF , 2012 . Z. Shelby. Constrained RESTful Environments (CoRE) Link Format. RFC 6690, IETF, 2012."},{"key":"e_1_3_2_1_42_1","unstructured":"State of DNSSEC Deployment 2016. https:\/\/www.internetsociety.org\/sites\/default\/files\/ISOC-State-of-DNSSEC-Deployment-2016-v1.pdf.  State of DNSSEC Deployment 2016. https:\/\/www.internetsociety.org\/sites\/default\/files\/ISOC-State-of-DNSSEC-Deployment-2016-v1.pdf."},{"key":"e_1_3_2_1_43_1","volume-title":"IETF","author":"Based The","year":"2012","unstructured":"The DNS- Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol : TLSA. RFC 6698 , IETF , 2012 . https:\/\/tools.ietf.org\/html\/rfc6698. The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA. RFC 6698, IETF, 2012. https:\/\/tools.ietf.org\/html\/rfc6698."},{"key":"e_1_3_2_1_44_1","unstructured":"A. Veenman. SIDN extends DNSSEC discount until July 1 2018. 2014. https:\/\/www.ispam.nl\/archives\/38957\/sidn-verlengt-dnssec-kortingsregeling-tot-1-juli-2018\/.  A. Veenman. SIDN extends DNSSEC discount until July 1 2018. 2014. https:\/\/www.ispam.nl\/archives\/38957\/sidn-verlengt-dnssec-kortingsregeling-tot-1-juli-2018\/."},{"key":"e_1_3_2_1_45_1","volume-title":"A measurement study of DNSSEC misconfigurations. Sec. Info., 4(8)","author":"van Adrichem N. L. M.","year":"2015","unstructured":"N. L. M. van Adrichem , N. Blenn , A. R. Lua , X. Wang , M. Wasif , F. Fatturrahman , and F. A. Kuipers . A measurement study of DNSSEC misconfigurations. Sec. Info., 4(8) , 2015 . N. L. M. van Adrichem, N. Blenn, A. R. Lua, X. Wang, M. Wasif, F. Fatturrahman, and F. A. Kuipers. A measurement study of DNSSEC misconfigurations. Sec. Info., 4(8), 2015."},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1109\/CNSM.2016.7818428"},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1109\/JSAC.2016.2558918"},{"key":"e_1_3_2_1_48_1","volume-title":"IETF","author":"Wouters P.","year":"2017","unstructured":"P. Wouters and O. Gudmundsson . Managing DS Records from the Parent via CDS\/CDNSKEY. RFC 8078 , IETF , 2017 . P. Wouters and O. Gudmundsson. Managing DS Records from the Parent via CDS\/CDNSKEY. RFC 8078, IETF, 2017."},{"key":"e_1_3_2_1_49_1","volume-title":"SATIN","author":"York D.","year":"2012","unstructured":"D. York . Challenges and Opportunities in Deploying DNSSEC : A progress report on an investigation into DNSSEC deployment . SATIN , 2012 . D. York. Challenges and Opportunities in Deploying DNSSEC: A progress report on an investigation into DNSSEC deployment. SATIN, 2012."},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2010.10"},{"key":"e_1_3_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1109\/INFCOM.2013.6567129"}],"event":{"name":"IMC '17: Internet Measurement Conference","location":"London United Kingdom","acronym":"IMC '17","sponsor":["SIGMETRICS ACM Special Interest Group on Measurement and Evaluation","SIGCOMM ACM Special Interest Group on Data Communication","USENIX Assoc USENIX Assoc"]},"container-title":["Proceedings of the 2017 Internet Measurement Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3131365.3131373","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3131365.3131373","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3131365.3131373","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T02:13:40Z","timestamp":1750212820000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3131365.3131373"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,11]]},"references-count":50,"alternative-id":["10.1145\/3131365.3131373","10.1145\/3131365"],"URL":"https:\/\/doi.org\/10.1145\/3131365.3131373","relation":{},"subject":[],"published":{"date-parts":[[2017,11]]},"assertion":[{"value":"2017-11-01","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}