rfc-7671

The DNS-Based Authentication of Named Entities (DANE) Protocol: Updates and Operational Guidance

V. Dukhovni, W. Hardaker

date2015-10 streamIETF areasec wgdane statusPROPOSED STANDARD pages33 canonicalhttps://www.rfc-editor.org/rfc/rfc7671 doi10.17487/RFC7671

This document clarifies and updates the DNS-Based Authentication of Named Entities (DANE) TLSA specification (RFC 6698), based on subsequent implementation experience. It also contains guidance for implementers, operators, and protocol developers who want to use DANE records.

updates

rfc-6698 — The DNS-Based Authentication of Named Entities (DANE) Transport Layer Security (TLS) Protocol: TLSA