Closed
Bug 672239
Opened 13 years ago
Closed 9 years ago
implement DNSSEC TLS
Categories
(Core :: Security: PSM, enhancement)
Core
Security: PSM
Tracking
()
RESOLVED
WONTFIX
People
(Reporter: keeler, Unassigned)
References
Details
Tracking bug for the implementation of the proposal to use DNSSEC to associate TLS keys with domain names.
Reporter | ||
Updated•13 years ago
|
Comment 1•13 years ago
|
||
Is there an RFC or Internet Draft defining TLS using DNSSEC keys?
If not ...
Reporter | ||
Comment 2•13 years ago
|
||
(In reply to comment #1)
> Is there an RFC or Internet Draft defining TLS using DNSSEC keys?
Sorry - should have linked this:
http://tools.ietf.org/html/draft-ietf-dane-protocol-08
Also, more details here:
https://wiki.mozilla.org/Security/DNSSEC-TLS-details
Updated•13 years ago
|
Assignee: nobody → nobody
Component: Libraries → Security: PSM
Product: NSS → Core
QA Contact: libraries → psm
Version: trunk → Trunk
Updated•13 years ago
|
Assignee: nobody → dkeeler
Comment 3•12 years ago
|
||
"draft-ietf-dane-protocol approved" - "this'll now head to the RFC editor for final processing":
http://www.ietf.org/mail-archive/web/dane/current/msg05124.html
Current version (version 23 of 2012-06-14):
http://tools.ietf.org/html/draft-ietf-dane-protocol
Tracked at:
https://datatracker.ietf.org/doc/draft-ietf-dane-protocol/
And see also:
- "Use Cases and Requirements for DNS-Based Authentication of Named Entities (DANE)"
http://tools.ietf.org/html/rfc6394
And related drafts, http://tools.ietf.org/wg/dane/
- Secure SMTP with TLS, DNSSEC and TLSA records,
- Using Secure DNS to Associate Certificates with Domain Names For S/MIME
Comment 4•12 years ago
|
||
Isn't this a duplicate of #589537?
(In reply to Roger Lynn from comment #4)
> Isn't this a duplicate of #589537?
Seems to be.
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → DUPLICATE
This turns out to be the master tracking bug, so reopening and will clean up.
Status: RESOLVED → REOPENED
Resolution: DUPLICATE → ---
New rfc7671 address some issues presented at https://wiki.mozilla.org/Security/DNSSEC-TLS-details like CNAME issues
Reporter | ||
Comment 10•9 years ago
|
||
We do not currently have plans to implement this.
Status: REOPENED → RESOLVED
Closed: 11 years ago → 9 years ago
Resolution: --- → WONTFIX
Comment hidden (off-topic) |
Comment hidden (advocacy) |
You need to log in
before you can comment on or make changes to this bug.
Description
•