Domain Name Associations (DNA) in the Extensible Messaging and Presence Protocol (XMPP)

The information below is for an old version of the document
Document Type None Internet-Draft (xmpp WG)
Last updated 2015-08-06 (latest revision 2015-03-24)
Replaces draft-saintandre-xmpp-dna
Stream IETF
Intended RFC status Proposed Standard
Expired & archived
pdf htmlized bibtex
Additional URLs
- Mailing list discussion
Stream WG state (None)
Document shepherd Dave Cridland
Shepherd write-up Show (last changed 2015-06-01)
IESG IESG state Unknown state
Consensus Boilerplate Yes
Telechat date
Responsible AD Ben Campbell
Send notices to,,,,

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document improves the security of the Extensible Messaging and Presence Protocol (XMPP) in two ways. First, it specifies how to establish a strong association between a domain name and an XML stream, using the concept of "prooftypes". Second, it describes how to securely delegate a service domain name (e.g., to a target server host name (e.g.,, which is especially important in multi-tenanted environments where the same target server hosts a large number of domains.


Peter Saint-Andre (
Matthew Miller (
Philipp Hancke (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)