[DNSOP] I-D Action: draft-ietf-dnsop-must-not-sha1-09.txt

internet-drafts@ietf.org Tue, 03 June 2025 18:43 UTC

MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <174897622570.2837708.3058817078150125589@dt-datatracker-59b84fc74f-84jsl>
Date: Tue, 03 Jun 2025 11:43:45 -0700
Message-ID-Hash: EF56RJF6XHNJ5KEJ5OSLJRR7LLQ57ZUB
CC: dnsop@ietf.org
Reply-To: dnsop@ietf.org
Subject: [DNSOP] I-D Action: draft-ietf-dnsop-must-not-sha1-09.txt
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/dLEpNH4a4wVe2dmtH-mWmq8kbZs>

Internet-Draft draft-ietf-dnsop-must-not-sha1-09.txt is now available. It is a
work item of the Domain Name System Operations (DNSOP) WG of the IETF.

   Title:   Deprecating the use of SHA-1 in DNSSEC signature algorithms
   Authors: Wes Hardaker
            Warren Kumari
   Name:    draft-ietf-dnsop-must-not-sha1-09.txt
   Pages:   6
   Dates:   2025-06-03

Abstract:

   This document deprecates the use of the RSASHA1 and
   RSASHA1-NSEC3-SHA1 algorithms for the creation of DNS Public Key
   (DNSKEY) and Resource Record Signature (RRSIG) records.

   It updates RFC4034 and RFC5155 as it deprecates the use of these
   algorithms.

The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-dnsop-must-not-sha1/

There is also an HTMLized version available at:
https://datatracker.ietf.org/doc/html/draft-ietf-dnsop-must-not-sha1-09

A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-dnsop-must-not-sha1-09

Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts

[DNSOP] I-D Action: draft-ietf-dnsop-must-not-sha… internet-drafts