Storing Certificates in the Domain Name System (DNS)

Cryptographic public keys are frequently published, and their authenticity is demonstrated by certificates. A CERT resource record (RR) is defined so that such certificates and related certificate revocation lists can be stored in the Domain Name System (DNS). [STANDARDS-TRACK]

[1]  Scott O. Bradner,et al.  Key words for use in RFCs to Indicate Requirement Levels , 1997, RFC.

[2]  Stephen T. Kent,et al.  Security Architecture for the Internet Protocol , 1998, RFC.

[3]  Roy T. Fielding,et al.  Uniform Resource Identifier (URI): Generic Syntax , 2005, RFC.

[4]  Jon Callas,et al.  OpenPGP Message Format , 1998, RFC.

[5]  Russ Housley,et al.  Internet X.509 Public Key Infrastructure Certificate and CRL Profile , 1999, RFC.

[6]  Steve Kille,et al.  Using Domains in LDAP/X.500 Distinguished Names , 1998, RFC.

[7]  Michael C. Richardson,et al.  A Method for Storing IPsec Keying Material in DNS , 2005, RFC.

[8]  Russ Housley,et al.  Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile , 2002, RFC.

[9]  Scott Rose,et al.  DNS Security Introduction and Requirements , 2005, RFC.

[10]  Scott Rose,et al.  Resource Records for the DNS Security Extensions , 2005, RFC.

[11]  Butler W. Lampson,et al.  SPKI Certificate Theory , 1999, RFC.

[12]  Peter W. Resnick,et al.  Internet Message Format , 2001, RFC.

[13]  Hugo Krawczyk,et al.  A Security Architecture for the Internet Protocol , 1999, IBM Syst. J..

[14]  Roy T. Fielding,et al.  Uniform Resource Identifiers (URI): Generic Syntax , 1998, RFC.

[15]  Paul V. Mockapetris,et al.  Domain names: Concepts and facilities , 1983, RFC.

[16]  Thomas Narten,et al.  Guidelines for Writing an IANA Considerations Section in RFCs , 1998, RFC.

[17]  William Stallings,et al.  PGP Message Exchange Formats , 1996, RFC.

[18]  Tim Berners-Lee,et al.  Uniform Resource Locators (URL) , 1994, RFC.

[19]  Scott Hollenbeck,et al.  Domain Name System (DNS) Security Extensions Mapping for the Extensible Provisioning Protocol (EPP) , 2005, RFC.

[20]  Paul V. Mockapetris,et al.  Domain names - implementation and specification , 1987, RFC.

[21]  Christopher Allen,et al.  The TLS Protocol Version 1.0 , 1999, RFC.

[22]  Simon Josefsson,et al.  The Base16, Base32, and Base64 Data Encodings , 2003, RFC.

[23]  Blake Ramsdell,et al.  Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.1 Message Specification , 2004, RFC.

[24]  David Cooper,et al.  Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile , 2008, RFC.