A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the DNS-based Authentication of Named Entities Working Group of the IETF.
Title : Using Secure DNS to Associate Certificates with Domain Names For TLS
Author(s) : P. Hoffman, J. Schlyter
Filename : draft-ietf-dane-protocol-05.txt
Pages : 12
Date : 2011-02-22
TLS and DTLS use certificates for authenticating the server. Users
want their applications to verify that the certificate provided by
the TLS server is in fact associated with the domain name they
expect. DNSSEC provides a mechanism for a zone operator to sign DNS
information directly. This way, bindings of keys to domains are
asserted not by external entities, but by the entities that operate
the DNS. This document describes how to use secure DNS to associate
the TLS server's certificate with the the intended domain name.
A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-ietf-dane-protocol-05.txt
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
Below is the data which will enable a MIME compliant mail reader
implementation to automatically retrieve the ASCII version of the
Internet-Draft.
- <ftp://ftp.ietf.org/internet-drafts/draft-ietf-dane-protocol-05.txt>
-
_______________________________________________
I-D-Announce mailing list
I-D-Announce@ietf.org
https://www.ietf.org/mailman/listinfo/i-d-announce
Internet-Draft directories: http://www.ietf.org/shadow.html
or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
