RFC Errata
Found 1 record.
Status: Verified (1)
RFC 9102, "TLS DNSSEC Chain Extension", August 2021
Source of RFC: INDEPENDENT
Errata ID: 6860
Status: Verified
Type: Technical
Publication Format(s) : TEXT, PDF, HTML
Reported By: Shumon Huque
Date Reported: 2022-02-24
Verifier Name: Eliot Lear (ISE)
Date Verified: 2022-03-17
Section 12 says:
IANA has made the following assignment in the "TLS ExtensionType Values" registry: +=======+================+=========+=============+===========+ | Value | Extension Name | TLS 1.3 | Recommended | Reference | +=======+================+=========+=============+===========+ | 59 | dnssec_chain | CH | No | RFC 9102 | +-------+----------------+---------+-------------+-----------+
It should say:
IANA has made the following assignment in the "TLS ExtensionType Values" registry: +=======+================+=========+=============+===========+ | Value | Extension Name | TLS 1.3 | Recommended | Reference | +=======+================+=========+=============+===========+ | 59 | dnssec_chain | CH, CT | No | RFC 9102 | +-------+----------------+---------+-------------+-----------+
Notes:
In TLS1.3, the dnssec_chain extension appears in the Certificate message from the server. Hence "CT" needs to be added to the "TLS 1.3" column.