Technical Summary
Use of the Domain Name System TSIG resource record requires
specification of a cryptographic message authentication code.
Currently identifiers have been specified only for the HMAC MD5
(Message Digest) and GSS (Generic Security Service) TSIG algorithms.
This document standardizes identifiers and implementation
requirements for additional HMAC SHA (Secure Hash Algorithm) TSIG
algorithms and standardizes how to specify and handle the truncation
of HMAC values in TSIG.
Working Group Summary
This document was produced by the DNSEXT WG. The Wg has consesnsus
to publish this document as a Proposed Standard.
Protocol Quality
This document was reviewed for the IESG by Margaret Wasserman.
Elwyn Davies performede a very helpful review of this document
during IETF LC.