Using DNS to Securely Publish Secure Shell (SSH) Key Fingerprints

Approval announcement
Draft of message to be sent after approval:

From: The IESG <>
To: IETF-Announce <>
Cc: Internet Architecture Board <>,
    RFC Editor <>, 
    secsh mailing list <>, 
    secsh chair <>
Subject: Protocol Action: 'Using DNS to Securely Publish SSH Key 
         Fingerprints' to Proposed Standard 

The IESG has approved the following document:

- 'Using DNS to Securely Publish SSH Key Fingerprints '
   <draft-ietf-secsh-dns-06.txt> as a Proposed Standard

This document is the product of the Secure Shell Working Group. 

The IESG contact persons are Russ Housley and Tim Polk.

A URL of this Internet-Draft is:

Technical Summary

      This document describes a method to verify Secure Shell (SSH) host
      keys using DNS security (DNSSEC). The document defines a new DNS
      resource record that contains a standard SSH key fingerprint.

Working Group Summary

      The Secure Shell Working Group came to consensus on this document.

Protocol Quality

      This document was reviewed by Russell Housley for the IESG.