I-D Action: draft-dukhovni-tls-dnssec-chain-03.txt

internet-drafts@ietf.org Thu, 15 April 2021 14:28 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietf.org
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 65E9D3A220B for <i-d-announce@ietf.org>; Thu, 15 Apr 2021 07:28:36 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-dukhovni-tls-dnssec-chain-03.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 7.27.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <161849691635.24570.15321562024354476884@ietfa.amsl.com>
Date: Thu, 15 Apr 2021 07:28:36 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/m0aIHDIBqoPtT0fZo8OsXH85qVQ>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Apr 2021 14:28:36 -0000

A New Internet-Draft is available from the on-line Internet-Drafts directories.


        Title           : TLS DNSSEC Chain Extension
        Authors         : Viktor Dukhovni
                          Shumon Huque
                          Willem Toorop
                          Paul Wouters
                          Melinda Shore
	Filename        : draft-dukhovni-tls-dnssec-chain-03.txt
	Pages           : 35
	Date            : 2021-04-13

Abstract:
   This document describes an experimental TLS extension for in-band
   transport of the complete set of DNSSEC validated records needed to
   perform DANE authentication of a TLS server without the need to
   perform separate out-of-band DNS lookups.  When the requisite DNS
   records do not exist, the extension conveys a validated denial of
   existence proof.

   This experimental extension is developed outside the IETF and is
   published here to guide implementation of the extension and to ensure
   interoperability among implementations.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-dukhovni-tls-dnssec-chain/

There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-dukhovni-tls-dnssec-chain-03.html

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-dukhovni-tls-dnssec-chain-03


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/