dnsext-6----Page:4
1 2 3 4 5 6
|
NSEC3 hash truncation Discussed in the draft, no reactions so far. What is the damage when hashes are truncated to the smallest unique value. Truncation causes higher collision probability. Collision damage: Limited to a higher probability to spoof non-existent names as existent. NOT POSSIBLE TO SPOOF EXISTENT NAMES AS NON-EXISTENT (as existent names will have a truncated hash associated) |