TLSA record support

New ideas and constructive comments go here.

Moderator: Moderators

TLSA record support

Postby candrews » Mon Mar 30, 2015 8:44 am

TLSA records are part of the implementation of DANE (DNS-based Authentication of Named Entities). These records allow for an alternative (or supplement) to the Certificate Authority system for verifying TLS certificates.

The relevant RFC is https://tools.ietf.org/html/rfc6698 - combined with DNSSEC (which Rollernet already supports), DANE offers an interesting new way to implement (or supplement) web security.

Thanks!
candrews
 
Posts: 26
Joined: Thu Jul 24, 2008 11:50 am

Re: TLSA record support

Postby Seth » Mon Mar 30, 2015 8:56 am

It is supported by the underlying server, I'll look in to putting it in the interface.
Seth Mattinen, Roller Network LLC
Seth
Site Admin
 
Posts: 265
Joined: Sun Aug 30, 2009 10:44 pm
Location: Nevada

Re: TLSA record support

Postby candrews » Thu Apr 28, 2016 6:28 am

Here's an easy to use UI for generating TLSA records: https://www.huque.com/bin/gen_tlsa I think the Rollernet interface would probably use the same fields. Also, for reference, the RFC is https://tools.ietf.org/html/rfc6698
candrews
 
Posts: 26
Joined: Thu Jul 24, 2008 11:50 am

Re: TLSA record support

Postby candrews » Thu Jun 09, 2016 8:14 am

*bump*
candrews
 
Posts: 26
Joined: Thu Jul 24, 2008 11:50 am

Re: TLSA record support

Postby candrews » Thu Sep 22, 2016 8:38 am

Any news?

TSLA support would be really nice to have!
candrews
 
Posts: 26
Joined: Thu Jul 24, 2008 11:50 am


Return to Suggestion Box

Who is online

Users browsing this forum: Google [Bot] and 1 guest