UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

IETF RFC 2931

DNS Request and Transaction Signatures ( SIG(0)s )

active, Most Current
Buy Now
Organization: IETF
Publication Date: 1 September 2000
Status: active
Page Count: 10
scope:

Extensions to the Domain Name System (DNS) are described in [RFC 2535] that can provide data origin and transaction integrity and authentication to security aware resolvers and applications through the use of cryptographic digital signatures.

Implementation experience has indicated the need for minor but noninteroperable changes in Request and Transaction signature resource records ( SIG(0)s ). These changes are documented herein.

Document History

IETF RFC 2931
September 1, 2000
DNS Request and Transaction Signatures ( SIG(0)s )
Extensions to the Domain Name System (DNS) are described in [RFC 2535] that can provide data origin and transaction integrity and authentication to security aware resolvers and applications through...

References

This document references:
IETF RFC 2930 - Secret Key Establishment for DNS (TKEY RR)
Published by IETF on September 1, 2000
[RFC 2845] provides a means of authenticating Domain Name System (DNS) queries and responses using shared secret keys via the Transaction Signature (TSIG) resource record (RR). However, it provides...
This document references:
RFC 2136 - Dynamic Updates in the Domain Name System (DNS UPDATE)
Published by IETF on April 1, 1997
A description is not available for this item.
This document references:
IETF RFC 2930 - Secret Key Establishment for DNS (TKEY RR)
Published by IETF on September 1, 2000
[RFC 2845] provides a means of authenticating Domain Name System (DNS) queries and responses using shared secret keys via the Transaction Signature (TSIG) resource record (RR). However, it provides...
This document is referenced by:
IETF RFC 6604 - xNAME RCODE and Status Bits Clarification
Published by IETF on April 1, 2012
The Domain Name System (DNS) has long provided means, such as the CNAME (Canonical Name), whereby a DNS query can be redirected to a different name. A DNS response header has an RCODE (Response Code)...
This document is referenced by:
IETF RFC 4635 - HMAC SHA TSIG Algorithm Identifiers
Published by IETF on August 1, 2006
Use of the Domain Name System TSIG resource record requires specification of a cryptographic message authentication code. Currently, identifiers have been specified only for HMAC MD5 (Hashed Message...
View Less
View All
Advertisement