Using DNS to Securely Publish Secure Shell (SSH) Key Fingerprints
Draft of message to be sent after approval:
From: The IESG <firstname.lastname@example.org> To: IETF-Announce <email@example.com> Cc: Internet Architecture Board <firstname.lastname@example.org>, RFC Editor <email@example.com>, secsh mailing list <firstname.lastname@example.org>, secsh chair <email@example.com> Subject: Protocol Action: 'Using DNS to Securely Publish SSH Key Fingerprints' to Proposed Standard The IESG has approved the following document: - 'Using DNS to Securely Publish SSH Key Fingerprints ' <draft-ietf-secsh-dns-06.txt> as a Proposed Standard This document is the product of the Secure Shell Working Group. The IESG contact persons are Russ Housley and Tim Polk. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-secsh-dns-06.txt
Technical Summary This document describes a method to verify Secure Shell (SSH) host keys using DNS security (DNSSEC). The document defines a new DNS resource record that contains a standard SSH key fingerprint. Working Group Summary The Secure Shell Working Group came to consensus on this document. Protocol Quality This document was reviewed by Russell Housley for the IESG.