New Non-WG Mailing List: keyassure -- Key Assurance With DNSSEC

IETF Secretariat <> Tue, 17 August 2010 18:36 UTC

Return-Path: <>
Received: by (Postfix, from userid 30) id CF0433A6807; Tue, 17 Aug 2010 11:36:02 -0700 (PDT)
From: IETF Secretariat <>
To: IETF Announcement list <>
Subject: New Non-WG Mailing List: keyassure -- Key Assurance With DNSSEC
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0
Message-Id: <>
Date: Tue, 17 Aug 2010 11:36:02 -0700 (PDT)
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "IETF announcement list. No discussions." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 17 Aug 2010 18:36:03 -0000

A new IETF non-working group email list has been created.

List address:
To subscribe:

Description: This list is for discussion relating to using
DNSSEC-protected DNS queries to get greater assurance for keys and
certificates that are passed in existing IETF protocols. The main idea is
that a relying party can get additional information about a domain name to
eliminate the need for using a certificate in a protocol, to eliminate the
need for sending certificates in the protocol if they are optional, and/or
to assure that the certificate given in a protocol is associated with the
domain name used by the application. In all three cases, the
application associates the key or key fingerprint securely retrieved from
the DNS with the domain name that was used in the DNS query. 

For additional information, please contact the list administrators.