Closed
Bug 672239
Opened 12 years ago
Closed 7 years ago
implement DNSSEC TLS
Categories
(Core :: Security: PSM, enhancement)
Core
Security: PSM
Tracking
()
RESOLVED
WONTFIX
People
(Reporter: keeler, Unassigned)
References
Details
Tracking bug for the implementation of the proposal to use DNSSEC to associate TLS keys with domain names.
|
Reporter | |
Updated•12 years ago
|
|
||
Comment 1•12 years ago
|
||
Is there an RFC or Internet Draft defining TLS using DNSSEC keys? If not ...
|
|
Reporter | |
Comment 2•12 years ago
|
||
(In reply to comment #1) > Is there an RFC or Internet Draft defining TLS using DNSSEC keys? Sorry - should have linked this: http://tools.ietf.org/html/draft-ietf-dane-protocol-08 Also, more details here: https://wiki.mozilla.org/Security/DNSSEC-TLS-details
|
||
Updated•12 years ago
|
Assignee: nobody → nobody
Component: Libraries → Security: PSM
Product: NSS → Core
QA Contact: libraries → psm
Version: trunk → Trunk
|
|
||
Updated•12 years ago
|
Assignee: nobody → dkeeler
|
||
Comment 3•11 years ago
|
||
"draft-ietf-dane-protocol approved" - "this'll now head to the RFC editor for final processing": http://www.ietf.org/mail-archive/web/dane/current/msg05124.html Current version (version 23 of 2012-06-14): http://tools.ietf.org/html/draft-ietf-dane-protocol Tracked at: https://datatracker.ietf.org/doc/draft-ietf-dane-protocol/ And see also: - "Use Cases and Requirements for DNS-Based Authentication of Named Entities (DANE)" http://tools.ietf.org/html/rfc6394 And related drafts, http://tools.ietf.org/wg/dane/ - Secure SMTP with TLS, DNSSEC and TLSA records, - Using Secure DNS to Associate Certificates with Domain Names For S/MIME
|
||
Comment 4•10 years ago
|
||
Isn't this a duplicate of #589537?
(In reply to Roger Lynn from comment #4) > Isn't this a duplicate of #589537? Seems to be.
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → DUPLICATE
This turns out to be the master tracking bug, so reopening and will clean up.
Status: RESOLVED → REOPENED
Resolution: DUPLICATE → ---
New rfc7671 address some issues presented at https://wiki.mozilla.org/Security/DNSSEC-TLS-details like CNAME issues
|
|
Reporter | |
Comment 10•7 years ago
|
||
We do not currently have plans to implement this.
Status: REOPENED → RESOLVED
Closed: 10 years ago → 7 years ago
Resolution: --- → WONTFIX
| Comment hidden (off-topic) |
| Comment hidden (advocacy) |
You need to log in
before you can comment on or make changes to this bug.
Description
•