A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the DNS-based Authentication of Named Entities
Working Group of the IETF.
Title : Using DNS-Based Authentication of Named Entities
(DANE) TLSA Records with SRV Records
Authors : Tony Finch
Matthew Miller
Peter Saint-Andre
Filename : draft-ietf-dane-srv-14.txt
Pages : 15
Date : 2015-04-23
Abstract:
The DANE specification (RFC 6698) describes how to use TLSA resource
records secured by DNSSEC (RFC 4033) to associate a server's
connection endpoint with its TLS certificate (thus enabling
administrators of domain names to specify the keys used in that
domain's TLS servers). However, application protocols that use SRV
records (RFC 2782) to indirectly name the target server connection
endpoints for a service domain cannot apply the rules from RFC 6698.
Therefore this document provides guidelines that enable such
protocols to locate and use TLSA records.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-dane-srv/
There's also a htmlized version available at:
http://tools.ietf.org/html/draft-ietf-dane-srv-14
A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-ietf-dane-srv-14
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
_______________________________________________
dane mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dane
