Reference document

Org
IETF
Pubnum
RFC 8945
Date
2020-11
Version
Title
Secret Key Transaction Authentication for DNS (TSIG)

Applicability

This document describes a protocol for transaction-level authentication using shared secrets and one-way hashing. It can be used to authenticate dynamic updates to a DNS zone as coming from an approved client or to authenticate responses as coming from an approved name server.

No recommendation is made here for distributing the shared secrets; it is expected that a network administrator will statically configure name servers and clients using some out-of-band mechanism.

This document obsoletes RFCs 2845 and 4635.

Responsible Party

Name
FMN CPWG

Status

URI
https://www.ietf.org/rfc/rfc8945.txt

History

Flag Date RFC Version
added 2022-05-06 14-32 15
changed 2022-12-20 14-62 15
changed 2023-03-23 14-73 15
UUID
392b5234-0e34-40c6-8eb1-43007568e4c5

Relationships

This standard is used by the following service profiles:

Last updated on Fri, 12 Apr 2024 12:37:50 UTC
This page is work in progress