A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : Transaction SIGnature (TSIG) using CGA Algorithm in IPv6 Author(s) : Hosnieh Rafiee Martin von Loewis Christoph Meinel Filename : draft-rafiee-intarea-cga-tsig-01.txt Pages : 18 Date : 2012-11-22 Abstract: The first step in the Transaction SIGnature (TSIG) (RFC 2845) process is the generation of a shared secret to be used between a DNS server and a host. The second step is the manual exchange of the shared secret between the DNS server and the host. This document, CGA-TSIG, proposes a possible way to automate the now manual process used for the authentication of a node with a DNS server during the DNS Update process by using the same parameters as are used in generating a secure address in IPv6 networks, i.e., Cryptographically Generated Addresses (CGA) (RFC 3972). CGA-TSIG facilitates this authentication process and reduces the time needed for DNS Updates. The current signature generation process and verification mechanism in TSIG are thus replaced with CGA. This algorithm is added, as an extension, to TSIG to eliminate the human intervention needed for generation and exchange of keys between a DNS server and a host when SEcure Neighbor Discovery (SEND) (RFC 3971) is used. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-rafiee-intarea-cga-tsig There's also a htmlized version available at: http://tools.ietf.org/html/draft-rafiee-intarea-cga-tsig-01 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=draft-rafiee-intarea-cga-tsig-01 Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ I-D-Announce mailing list I-D-Announce@ietf.org https://www.ietf.org/mailman/listinfo/i-d-announce Internet-Draft directories: http://www.ietf.org/shadow.html or ftp://ftp.ietf.org/ietf/1shadow-sites.txt