Inter-operability of Secure Domain Name System with Other Key Distribution Services

Document Type Expired Internet-Draft (dnssec WG)
Last updated 1999-06-29
Stream IETF
Intended RFC status (None)
Expired & archived
pdf htmlized bibtex
Stream WG state WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


There are several mechanisms for distributing public keys and certificates today. These distribution services publish certificates which contain cryptographic public keys. Clients that use any of these distribution services to retrieve certificates, require additional software for the retrieval, parsing and verification of these certificates. In this draft, we propose an alternate scheme that takes advantage of the Secure DNS infrastructure to distribute verified public keys obtained from other distribution services.


J.R. Rao (
Padmaja Rao (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)