HMAC SHA (Hashed Message Authentication Code, Secure Hash Algorithm) TSIG Algorithm Identifiers
Draft of message to be sent after approval:
From: The IESG <firstname.lastname@example.org> To: IETF-Announce <email@example.com> Cc: Internet Architecture Board <firstname.lastname@example.org>, RFC Editor <email@example.com>, dnsext mailing list <firstname.lastname@example.org>, dnsext chair <email@example.com> Subject: Protocol Action: 'HMAC SHA TSIG Algorithm Identifiers' to Proposed Standard The IESG has approved the following document: - 'HMAC SHA TSIG Algorithm Identifiers ' <draft-ietf-dnsext-tsig-sha-07.txt> as a Proposed Standard This document is the product of the DNS Extensions Working Group. The IESG contact persons are Margaret Wasserman and Mark Townsley. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-dnsext-tsig-sha-07.txt
Technical Summary Use of the Domain Name System TSIG resource record requires specification of a cryptographic message authentication code. Currently identifiers have been specified only for the HMAC MD5 (Message Digest) and GSS (Generic Security Service) TSIG algorithms. This document standardizes identifiers and implementation requirements for additional HMAC SHA (Secure Hash Algorithm) TSIG algorithms and standardizes how to specify and handle the truncation of HMAC values in TSIG. Working Group Summary This document was produced by the DNSEXT WG. The Wg has consesnsus to publish this document as a Proposed Standard. Protocol Quality This document was reviewed for the IESG by Margaret Wasserman. Elwyn Davies performede a very helpful review of this document during IETF LC.