Skip to main content

Change the status of GOST Signature Algorithms in DNSSEC in the IETF stream to Historic
status-change-gost-dnssec-to-historic-05

Document Status change Change the status of GOST Signature Algorithms in DNSSEC in the IETF stream to Historic
Last updated 2024-05-14
Moves to Historic RFC5933
State Approved - announcement sent
IESG Telechat date (None)
Responsible AD Warren "Ace" Kumari
Send notices to warren@kumari.net

status-change-gost-dnssec-to-historic-05
RFC5933 - "Use of GOST Signature Algorithms in DNSKEY and RRSIG Resource
Records for DNSSEC" was published in the IETF Stream and refers only to GOST R
34.10-2001 and GOST R 34.11-94. GOST 34.10-2001 and GOST 34.11-94 were
deprecated by the Orders of the Federal Agency for Technical Regulation and
Metrology of Russia (Rosstandart) in August 2012, and superseded by GOST
34.10-2012 and GOST 34.11-2012 respectively from January 1, 2013.

draft-makarenko-gost2012-dnssec (published as RFC9558) describes "how to
produce digital signatures and hash functions using the GOST R 34.10-2012 and
GOST R 34.11-2012 algorithms for DNSKEY, RRSIG, and DS resource records, for
use in the Domain Name System Security Extensions (DNSSEC)" will be published
on the ISE stream.

This status change document marks RFC5933 as historic.