Questions or comments should be sent to SNIP admins.
NLNet Labs is a network research lab based in the Netherlands. NLNet Labs has been an active participant in the development of DNSSEC and has produced their own authoritative DNS server implementation called the Name Server Daemon (NSD). Like BIND, NSD is DNSSEC aware and can serve signed zones. However, NSD is authoritative only and cannot act as a validating recursive server.
NSD is becoming a popular alternative to ISC's BIND for organizations seeking an authoritative only DNS server. NSD's internal architecture is different than BIND as NSD has been optimized for response time at the expense of more memory usage. This trade-off may not matter for organizations that value response time and throughput over a potentially large memory footprint.
The NSD software has recently been used as the basis of the Secure64 DNSSEC device. The name server that operates the signed zones maintained on the Secure64 device is NSD.
NSD is currently operating as one of the secondary authoritative servers for the dnsops.gov zone. The configuration for the NSD server attempts to match the recommendations in the NIST SP 800-81 guidance document.
NSD can meet the relevant checklist items in NIST SP 800-81. A brief table of checklist items and which feature in NSD can be used to meet the checklist item is available.
Questions or comments should be sent to SNIP admins.
NIST is an agency of the U.S. Department of Commerce.
Privacy policy / security notice / accessibility statement / Disclaimer / Freedom of Information Act (FOIA) / No Fear Act Data
Date created 6/2/2008. Last updated 9/10/2009.
