Declaring Kerberos Realm Names in DNS (_kerberos TXT)
draft-vanrein-dnstxt-krb1-09
| Document | Type | Expired Internet-Draft (individual) | |
|---|---|---|---|
| Last updated | 2017-04-27 (latest revision 2016-10-24) | ||
| Stream | ISE | ||
| Intended RFC status | Informational | ||
| Formats |
Expired & archived
plain text
pdf
html
bibtex
|
||
| Stream | ISE state | In ISE Review | |
| Consensus Boilerplate | Unknown | ||
| Document shepherd | No shepherd assigned | ||
| IESG | IESG state | Expired | |
| Telechat date | |||
| Responsible AD | (None) | ||
| Send notices to | (None) | ||
This Internet-Draft is no longer active. A copy of
the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-vanrein-dnstxt-krb1-09.txt
https://www.ietf.org/archive/id/draft-vanrein-dnstxt-krb1-09.txt
Abstract
This specification defines a method to determine Kerberos realm names for services that are known by their DNS name. Currently, such information can only be found in static mappings or through educated guesses. DNS can make this process more flexible, provided that DNSSEC is used to assure authenticity of resource records.
Authors
Rick van Rein (rick@openfortress.nl)
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)