RFC 6698

The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA

TLS

Defines the TLSA DNS record type for storing TLS certificate information in DNS, enabling domain owners to specify which TLS certificates should be used for their services.

DANE TLSA TLS DNS DNSSEC Certificate Authentication

Published: 2012-08

RFC 6698 - The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA

This RFC defines the TLSA DNS record type for storing TLS certificate information in DNS.

Abstract

Encrypted communication on the Internet often uses Transport Layer Security (TLS), which depends on third parties to certify the keys used. This document improves on that situation by enabling the administrators of domain names to specify the keys used in that domain's TLS servers.

RFC 6698 - The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA This RFC defines the TLSA DNS record type for storing TLS certificate information in DNS. Abstract: Encrypted communication on the Internet often uses Transport Layer Security (TLS), which depends on third parties to certify the keys used. This document improves on that situation by enabling the administrators of domain names to specify the keys used in that domain's TLS servers.

Quick Info

RFC Number:
6698

Category:
TLS

Published:
2012-08

External Links:
IETF Tools
RFC Editor