@techreport{fujiwara-dnsop-resolver-update-00,
    number =    {draft-fujiwara-dnsop-resolver-update-00},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-fujiwara-dnsop-resolver-update/00/},
    author =    {Kazunori Fujiwara},
    title =     {{Updating Resolver Algorithm}},
    pagetotal = 9,
    year =      2016,
    month =     oct,
    day =       31,
    abstract =  {Parent side NS RRSet and glue records are all information to access servers for child zone. However, they may be overwritten by child zone data (zone apex NS RRSet and other A/AAAA RRSets). The overwrite makes name resolution unstable and induces vulnerabilities. RFC 2181 section 5.4.1 specifies trustworthiness of DNS data. And it is deemed that that all cached data (authoritative data, non- authoritative data, referrals and glue records) are merged into one. Resolvers may answer non-authoritative data, referrals and glue records that should not be returned. This document proposes updating resolver algorithm that separates the cache to "authoritative data cache" and "delegation cache". The former is used to answer stub resolvers, and the latter is used to iterate zones.},
}