@misc{rfc5155,
    series =    {Request for Comments},
    number =    5155,
    howpublished =  {RFC 5155},
    publisher = {RFC Editor},
    doi =       {10.17487/RFC5155},
    url =       {https://www.rfc-editor.org/info/rfc5155},
    author =    {Roy Arends and Geoffrey Sisson and David Blacka and Ben Laurie},
    title =     {{DNS Security (DNSSEC) Hashed Authenticated Denial of Existence}},
    pagetotal = 52,
    year =      2008,
    month =     mar,
    abstract =  {The Domain Name System Security (DNSSEC) Extensions introduced the NSEC resource record (RR) for authenticated denial of existence. This document introduces an alternative resource record, NSEC3, which similarly provides authenticated denial of existence. However, it also provides measures against zone enumeration and permits gradual expansion of delegation-centric zones. {[}STANDARDS-TRACK{]}},
}