[keyassure] I-D Action:draft-ietf-dane-protocol-00.txt
Internet-Drafts@ietf.org Mon, 13 December 2010 22:00 UTC
Return-Path: <Internet-Drafts@ietf.org>
X-Original-To: keyassure@core3.amsl.com
Delivered-To: keyassure@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 75BB93A6D42; Mon, 13 Dec 2010 14:00:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.326
X-Spam-Level:
X-Spam-Status: No, score=-102.326 tagged_above=-999 required=5 tests=[AWL=0.273, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nbBH3YAZVXHs; Mon, 13 Dec 2010 14:00:01 -0800 (PST)
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C6B273A6D31; Mon, 13 Dec 2010 14:00:01 -0800 (PST)
MIME-Version: 1.0
Content-Type: Multipart/Mixed; Boundary="NextPart"
From: Internet-Drafts@ietf.org
To: i-d-announce@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 3.10
Message-ID: <20101213220001.24500.52050.idtracker@localhost>
Date: Mon, 13 Dec 2010 14:00:01 -0800
Cc: keyassure@ietf.org
Subject: [keyassure] I-D Action:draft-ietf-dane-protocol-00.txt
X-BeenThere: keyassure@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Key Assurance With DNSSEC <keyassure.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/keyassure>, <mailto:keyassure-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/keyassure>
List-Post: <mailto:keyassure@ietf.org>
List-Help: <mailto:keyassure-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/keyassure>, <mailto:keyassure-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Dec 2010 22:00:02 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the DNS-based Authentication of Named Entities Working Group of the IETF. Title : Using Secure DNS to Associate Certificates with Domain Names For TLS Author(s) : P. Hoffman, J. Schlyter Filename : draft-ietf-dane-protocol-00.txt Pages : 9 Date : 2010-12-12 TLS and DTLS use certificates for authenticating the server. Users want their applications to verify that the certificate provided by the TLS server is in fact associated with the domain name they expect. Instead of trusting a certification authority to have made this association correctly, the user might instead trust the authoritative DNS server for the domain name to make that association. This document describes how to use secure DNS to associate the TLS server's certificate with the the intended domain name. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-dane-protocol-00.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft.
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- [keyassure] I-D Action:draft-ietf-dane-protocol-0… Internet-Drafts
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Stephen Farrell
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Ilari Liusvaara
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Hoffman
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Phillip Hallam-Baker
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Stephen Farrell
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Stephen Farrell
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Warren Kumari
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Ilari Liusvaara
- [keyassure] PKIX-only draft-ietf-dane-protocol-00… Simon Josefsson
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Jakob Schlyter
- Re: [keyassure] PKIX-only draft-ietf-dane-protoco… Phillip Hallam-Baker
- Re: [keyassure] PKIX-only draft-ietf-dane-protoco… Paul Hoffman
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Ilari Liusvaara
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Steve Schultze
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… W.C.A. Wijngaards
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Ben Laurie
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Steve Schultze
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Ben Laurie
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Steve Schultze
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Florian Weimer
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Steve Schultze
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Phillip Hallam-Baker
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Steve Schultze
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Nicholas Weaver
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] Upgrading http URLs using unsecur… Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Phillip Hallam-Baker
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Phillip Hallam-Baker
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Stephen Schultze
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Martin Rex
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Stephen Schultze
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Stephen Schultze
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Martin Rex
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Phillip Hallam-Baker
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Stephen Schultze
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Simon Josefsson
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] "Trusted third parties" Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] "Trusted third parties" Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] "Trusted third parties" Matt McCutchen
- Re: [keyassure] "Trusted third parties" Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… W.C.A. Wijngaards
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… James Cloos
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Stephen Schultze
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Stephen Schultze
- Re: [keyassure] "Trusted third parties" Mark Andrews
- Re: [keyassure] "Trusted third parties" Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Martin Rex
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Mark Andrews
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Mark Andrews
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Martin Rex
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Mark Andrews
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Martin Rex
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Adam Langley
- [keyassure] TLSA and HASTLS Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] TLSA and HASTLS Paul Hoffman
- Re: [keyassure] TLSA and HASTLS Matt McCutchen
- Re: [keyassure] TLSA and HASTLS Paul Hoffman
- Re: [keyassure] TLSA and HASTLS Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] TLSA and HASTLS Brian Smith
- Re: [keyassure] TLSA and HASTLS Phillip Hallam-Baker
- Re: [keyassure] TLSA and HASTLS Paul Wouters
- Re: [keyassure] TLSA and HASTLS Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Martin Rex
- Re: [keyassure] TLSA and HASTLS Phillip Hallam-Baker
- Re: [keyassure] TLSA and HASTLS Matt McCutchen
- Re: [keyassure] TLSA and HASTLS Adam Langley
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… James Cloos
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Steve Schultze
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Jeffrey A. Williams
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… James Cloos
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Jeffrey A. Williams
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] TLSA and HASTLS Jakob Schlyter
- Re: [keyassure] TLSA and HASTLS Phillip Hallam-Baker
- Re: [keyassure] TLSA and HASTLS Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Matt McCutchen
- Re: [keyassure] TLSA and HASTLS Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] TLSA and HASTLS Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Matt McCutchen
- Re: [keyassure] TLSA and HASTLS Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Steingruebl, Andy
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] TLSA and HASTLS Paul Wouters
- Re: [keyassure] TLSA and HASTLS Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Phillip Hallam-Baker
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Ben Laurie
- Re: [keyassure] TLSA and HASTLS Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Steve Schultze
- Re: [keyassure] TLSA and HASTLS Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Steve Schultze
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] TLSA and HASTLS Paul Hoffman
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… W.C.A. Wijngaards
- Re: [keyassure] HTTPS -> HTTP downgrade Zack Weinberg
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] TLSA and HASTLS Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Steingruebl, Andy
- [keyassure] Goals of DANE Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Steingruebl, Andy
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Steingruebl, Andy
- Re: [keyassure] "hostname/CN= limitation" Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Michael Richardson
- [keyassure] Need for SNI when multiple virtual ho… Matt McCutchen
- Re: [keyassure] TLSA and HASTLS Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Phillip Hallam-Baker
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Geoff Beier
- Re: [keyassure] HTTPS -> HTTP downgrade Zack Weinberg
- Re: [keyassure] HTTPS -> HTTP downgrade Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Matt McCutchen
- Re: [keyassure] TLSA and HASTLS Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Matt McCutchen
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Phillip Hallam-Baker
- Re: [keyassure] TLSA and HASTLS Phillip Hallam-Baker
- Re: [keyassure] TLSA and HASTLS Paul Wouters
- Re: [keyassure] TLSA and HASTLS Phillip Hallam-Baker
- Re: [keyassure] TLSA and HASTLS Matt McCutchen
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] TLSA and HASTLS Phillip Hallam-Baker
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Matt McCutchen
- Re: [keyassure] TLSA and HASTLS James Cloos
- Re: [keyassure] HTTPS -> HTTP downgrade Ilari Liusvaara
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Phillip Hallam-Baker
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Steingruebl, Andy
- Re: [keyassure] TLSA and HASTLS Matt McCutchen
- Re: [keyassure] TLSA and HASTLS Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Osterweil, Eric
- Re: [keyassure] TLSA and HASTLS Osterweil, Eric
- Re: [keyassure] TLSA and HASTLS Matt McCutchen
- Re: [keyassure] TLSA and HASTLS Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] [websec] HASTLS and client policy… Ilari Liusvaara
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Phillip Hallam-Baker
- Re: [keyassure] TLSA and HASTLS Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Steingruebl, Andy
- Re: [keyassure] TLSA and HASTLS Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Martin Rex
- Re: [keyassure] TLSA and HASTLS Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Phillip Hallam-Baker
- Re: [keyassure] TLSA and HASTLS Paul Hoffman
- Re: [keyassure] TLSA and HASTLS Phillip Hallam-Baker
- Re: [keyassure] TLSA and HASTLS Paul Hoffman
- Re: [keyassure] HTTPS -> HTTP downgrade Steingruebl, Andy
- Re: [keyassure] TLSA and HASTLS Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Ilari Liusvaara
- Re: [keyassure] HTTPS -> HTTP downgrade Ben Laurie
- Re: [keyassure] HTTPS -> HTTP downgrade Ben Laurie
- Re: [keyassure] HTTPS -> HTTP downgrade Nicholas Weaver
- Re: [keyassure] HTTPS -> HTTP downgrade Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] HTTPS -> HTTP downgrade Phillip Hallam-Baker
- Re: [keyassure] HTTPS -> HTTP downgrade Paul Wouters
- Re: [keyassure] I-D Action:draft-ietf-dane-protoc… Ilari Liusvaara
- Re: [keyassure] HTTPS -> HTTP downgrade Ben Laurie
- Re: [keyassure] HTTPS -> HTTP downgrade Phillip Hallam-Baker
- [keyassure] HASTLS and client policy preference Paul Hoffman
- Re: [keyassure] HASTLS and client policy preferen… Paul Wouters
- Re: [keyassure] [websec] HASTLS and client policy… Steingruebl, Andy
- Re: [keyassure] [websec] HASTLS and client policy… Paul Wouters
- Re: [keyassure] [websec] HASTLS and client policy… Steingruebl, Andy
- Re: [keyassure] [websec] HASTLS and client policy… Phillip Hallam-Baker
- Re: [keyassure] [websec] HASTLS and client policy… Paul Hoffman
- Re: [keyassure] [websec] HASTLS and client policy… Paul Hoffman
- Re: [keyassure] [websec] HASTLS and client policy… Paul Hoffman
- Re: [keyassure] [websec] HASTLS and client policy… Paul Wouters
- Re: [keyassure] [websec] HASTLS and client policy… Paul Wouters
- Re: [keyassure] [websec] HASTLS and client policy… Ben Laurie
- Re: [keyassure] HTTPS -> HTTP downgrade Martin Rex