Reference document

Org
IETF
Pubnum
RFC 8945 - STD 93
Date
2020-11
Version
Title
Secret Key Transaction Authentication for DNS (TSIG)

Applicability

This document describes a protocol for transaction-level authentication using shared secrets and one-way hashing. It can be used to authenticate dynamic updates to a DNS zone as coming from an approved client or to authenticate responses as coming from an approved name server.

No recommendation is made here for distributing the shared secrets; it is expected that a network administrator will statically configure name servers and clients using some out-of-band mechanism.

This document obsoletes RFCs 2845 and 4635.

Responsible Party

Name
FMN CPWG

Status

URI
https://datatracker.ietf.org/doc/html/rfc8945

History

Flag Date RFC Version
added 2022-05-06 14.032 15.0
UUID
392b5234-0e34-40c6-8eb1-43007568e4c5

Relationships

This standard is used by the following service profiles: