RFC 6394 on Use Cases and Requirements for DNS-Based Authentication of Named Entities (DANE)

rfc-editor@rfc-editor.org Wed, 26 October 2011 22:52 UTC

Return-Path: <wwwrun@rfc-editor.org>
X-Original-To: ietf-announce@ietfa.amsl.com
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id 5C64311E80B7; Wed, 26 Oct 2011 15:52:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.369
X-Spam-Status: No, score=-102.369 tagged_above=-999 required=5 tests=[AWL=0.231, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id arCOuEXf+TAX; Wed, 26 Oct 2011 15:52:52 -0700 (PDT)
Received: from rfc-editor.org (rfc-editor.org [IPv6:2001:1890:123a::1:2f]) by ietfa.amsl.com (Postfix) with ESMTP id DEC4A11E80B6; Wed, 26 Oct 2011 15:52:49 -0700 (PDT)
Received: by rfc-editor.org (Postfix, from userid 30) id C510898C283; Wed, 26 Oct 2011 15:52:49 -0700 (PDT)
To: ietf-announce@ietf.org, rfc-dist@rfc-editor.org
Subject: RFC 6394 on Use Cases and Requirements for DNS-Based Authentication of Named Entities (DANE)
From: rfc-editor@rfc-editor.org
Message-Id: <20111026225249.C510898C283@rfc-editor.org>
Date: Wed, 26 Oct 2011 15:52:49 -0700
Cc: dane@ietf.org, rfc-editor@rfc-editor.org
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-announce>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Oct 2011 22:52:53 -0000

A new Request for Comments is now available in online RFC libraries.

        RFC 6394

        Title:      Use Cases and Requirements for 
                    DNS-Based Authentication of Named Entities (DANE) 
        Author:     R. Barnes
        Status:     Informational
        Stream:     IETF
        Date:       October 2011
        Mailbox:    rbarnes@bbn.com
        Pages:      12
        Characters: 29477
        Updates/Obsoletes/SeeAlso:   None

        I-D Tag:    draft-ietf-dane-use-cases-05.txt

        URL:        http://www.rfc-editor.org/rfc/rfc6394.txt

Many current applications use the certificate-based authentication
features in Transport Layer Security (TLS) to allow clients to verify
that a connected server properly represents a desired domain name.
Typically, this authentication has been based on PKIX certificate
chains rooted in well-known certificate authorities (CAs), but
additional information can be provided via the DNS itself.  This
document describes a set of use cases in which the DNS and DNS
Security Extensions (DNSSEC) could be used to make assertions that
support the TLS authentication process.  The main focus of this
document is TLS server authentication, but it also covers TLS client
authentication for applications where TLS clients are identified by
domain names.  [STANDARDS-TRACK]

This document is a product of the DNS-based Authentication of Named Entities Working Group of the IETF.

INFORMATIONAL: This memo provides information for the Internet community.
It does not specify an Internet standard of any kind. Distribution of
this memo is unlimited.

This announcement is sent to the IETF-Announce and rfc-dist lists.
To subscribe or unsubscribe, see

For searching the RFC series, see http://www.rfc-editor.org/rfcsearch.html.
For downloading RFCs, see http://www.rfc-editor.org/rfc.html.

Requests for special distribution should be addressed to either the
author of the RFC in question, or to rfc-editor@rfc-editor.org.  Unless
specifically noted otherwise on the RFC itself, all RFCs are for
unlimited distribution.

The RFC Editor Team
Association Management Solutions, LLC