A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : Transaction SIGnature (TSIG) using CGA Algorithm in IPv6
Author(s) : Hosnieh Rafiee
Martin von Loewis
Christoph Meinel
Filename : draft-rafiee-intarea-cga-tsig-01.txt
Pages : 18
Date : 2012-11-22
Abstract:
The first step in the Transaction SIGnature (TSIG) (RFC 2845) process
is the generation of a shared secret to be used between a DNS server
and a host. The second step is the manual exchange of the shared
secret between the DNS server and the host. This document, CGA-TSIG,
proposes a possible way to automate the now manual process used for
the authentication of a node with a DNS server during the DNS Update
process by using the same parameters as are used in generating a
secure address in IPv6 networks, i.e., Cryptographically Generated
Addresses (CGA) (RFC 3972). CGA-TSIG facilitates this authentication
process and reduces the time needed for DNS Updates. The current
signature generation process and verification mechanism in TSIG are
thus replaced with CGA. This algorithm is added, as an extension, to
TSIG to eliminate the human intervention needed for generation and
exchange of keys between a DNS server and a host when SEcure Neighbor
Discovery (SEND) (RFC 3971) is used.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-rafiee-intarea-cga-tsig
There's also a htmlized version available at:
http://tools.ietf.org/html/draft-rafiee-intarea-cga-tsig-01
A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-rafiee-intarea-cga-tsig-01
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
_______________________________________________
I-D-Announce mailing list
I-D-Announce@ietf.org
https://www.ietf.org/mailman/listinfo/i-d-announce
Internet-Draft directories: http://www.ietf.org/shadow.html
or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
