Secret Key Transaction Authentication for DNS (TSIG), May 2000
- File formats:
- PROPOSED STANDARD
- RFC 1035
- Updated by:
- RFC 3645, RFC 4635, RFC 6895
- P. Vixie
D. Eastlake 3rd
- dnsext (int)
Discuss this RFC: Send questions or comments to firstname.lastname@example.org
This protocol allows for transaction level authentication using shared secrets and one way hashing. It can be used to authenticate dynamic updates as coming from an approved client, or to authenticate responses as coming from an approved recursive name server. [STANDARDS-TRACK]
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 4844.