RFC 2845
Secret Key Transaction Authentication for DNS (TSIG), May 2000
- File formats:
- Status:
- PROPOSED STANDARD
- Obsoleted by:
- RFC 8945
- Updates:
- RFC 1035
- Updated by:
- RFC 3645, RFC 4635, RFC 6895
- Authors:
- P. Vixie
O. Gudmundsson
D. Eastlake 3rd
B. Wellington - Stream:
- IETF
- Source:
- dnsext (int)
Cite this RFC: TXT | XML | BibTeX
DOI: 10.17487/RFC2845
Discuss this RFC: Send questions or comments to the mailing list [email protected]
Other actions: Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 2845
Abstract
This protocol allows for transaction level authentication using shared secrets and one way hashing. It can be used to authenticate dynamic updates as coming from an approved client, or to authenticate responses as coming from an approved recursive name server. [STANDARDS-TRACK]
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.