IETF Logo Mail Archive

I-D Action: draft-wilson-dane-pkix-cd-01.txt

internet-drafts@ietf.org Wed, 14 April 2021 17:13 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietf.org
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 96E843A17F1 for <i-d-announce@ietf.org>; Wed, 14 Apr 2021 10:13:54 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-wilson-dane-pkix-cd-01.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 7.27.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <161842043456.21557.10811203917124843629@ietfa.amsl.com>
Date: Wed, 14 Apr 2021 10:13:54 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/FEpLo-BXkErtJ-gg1x67rrIbbAY>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Apr 2021 17:13:55 -0000

A New Internet-Draft is available from the on-line Internet-Drafts directories.


        Title           : PKI-Authenticated Certificate Discovery Using DANE TLSA records
        Authors         : Ash Wilson
                          Shumon Huque
	Filename        : draft-wilson-dane-pkix-cd-01.txt
	Pages           : 9
	Date            : 2021-04-14

Abstract:
   The DNS-Based Authentication of Named Entities (DANE) TLSA
   specification [RFC6698] and The DNS-Based Authentication of Named
   Entities (DANE) Protocol: Updates and Operational Guidance [RFC7671]
   describe how to publish Transport Layer Security (TLS) server
   certificates or public keys in the DNS.  This document updates
   [RFC6698] and [RFC7671].  It describes how to use the TLSA record to
   enable entity and CA certificate discovery for object security and
   trust chain discovery use cases, and how to use PKIX validation for
   TLSA records queried without the benefit of DNSSEC.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-wilson-dane-pkix-cd/

There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-wilson-dane-pkix-cd-01.html

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-wilson-dane-pkix-cd-01


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

v2.23.0 | Report a Bug | By Email