2246: The TLS Protocol Version 1.0.

HTML TXT PS PDF

This document specifies Version 1.0 of the Transport Layer Security (TLS) protocol. The TLS protocol provides communications privacy over the Internet. The protocol allows client/server applications to communicate in a way that is designed to prevent eavesdropping, tampering, or message forgery.

Status PROPOSED STANDARD
Format TXT=170401 bytes
Authors C. Allen
Date January 1999
Keyphrases TLS Protocol client certificate

Obsoleted by

RFC4346: The Transport Layer Security (TLS) Protocol Version 1.1.

Updated by

RFC3546: Transport Layer Security (TLS) Extensions.

References

RFC793: Transmission Control Protocol.
RFC854: Telnet Protocol Specification.
RFC855: Telnet Option Specifications.
RFC959: File Transfer Protocol.
RFC1319: The MD2 Message-Digest Algorithm.
RFC1321: The MD5 Message-Digest Algorithm.
RFC1945: Hypertext Transfer Protocol -- HTTP/1.0.
RFC2026: The Internet Standards Process -- Revision 3.
RFC2104: HMAC: Keyed-Hashing for Message Authentication.
RFC2268: A Description of the RC2(r) Encryption Algorithm.
RFC2459: Internet X.509 Public Key Infrastructure Certificate and CRL Profile.

Referenced by

RFC2487: SMTP Service Extension for Secure SMTP over
RFC2543: SIP: Session Initiation Protocol.
RFC2595: Using TLS with IMAP, POP3 and
RFC2617: HTTP Authentication: Basic and Digest Access Authentication.
RFC2624: NFS Version 4 Design Considerations.
RFC2628: Simple Cryptographic Program Interface (Crypto API).
RFC2649: An LDAP Control and Schema for Holding Operation Signatures.
RFC2653: CIP Transport Protocols.
RFC2654: A Tagged Index Object for use in the Common Indexing Protocol.
RFC2706: ECML v1: Field Names for E-Commerce.
RFC2712: Addition of Kerberos Cipher Suites to Transport Layer Security (TLS).
RFC2716: PPP EAP TLS Authentication Protocol.
RFC2719: Framework Architecture for Signaling Transport.
RFC2748: The COPS (Common Open Policy Service) Protocol.
RFC2757: Long Thin Networks.
RFC2801: Internet Open Trading Protocol - IOTP Version 1.0.
RFC2813: Internet Relay Chat: Server Protocol.
RFC2817: Upgrading to TLS Within HTTP/1.1.
RFC2818: HTTP Over
RFC2825: A Tangled Web: Issues of I18N, Domain Names, and the Other Internet protocols. IAB, L. Daigle, ed..
RFC2828: Internet Security Glossary.
RFC2829: Authentication Methods for
RFC2830: Lightweight Directory Access Protocol (v3): Extension for Transport Layer Security.
RFC2832: NSI Registry Registrar Protocol (RRP) Version 1.1.0.
RFC2847: LIPKEY - A Low Infrastructure Public Key Mechanism Using
RFC2848: The PINT Service Protocol: Extensions to SIP and SDP for IP Access to Telephone Call Services.
RFC2910: Internet Printing Protocol/1.1: Encoding and Transport.
RFC2911: Internet Printing Protocol/1.1: Model and Semantics.
RFC2935: Internet Open Trading Protocol (IOTP) HTTP Supplement.
RFC2936: HTTP MIME Type Handler Detection.
RFC2993: Architectural Implications of
RFC3002: Overview of 2000 IAB Wireless Internetworking Workshop.
RFC3029: Internet X.509 Public Key Infrastructure Data Validation and Certification Server Protocols.
RFC3049: TN3270E Service Location and Session Balancing.
RFC3078: Microsoft Point-To-Point Encryption (MPPE) Protocol.
RFC3079: Deriving Keys for use with Microsoft Point-to-Point Encryption (MPPE).
RFC3080: The Blocks Extensible Exchange Protocol Core.
RFC3106: ECML v1.1: Field Specifications for E-Commerce.
RFC3117: On the Design of Application Protocols.
RFC3135: Performance Enhancing Proxies Intended to Mitigate Link-Related Degradations.
RFC3150: End-to-end Performance Implications of Slow Links.
RFC3161: Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP).
RFC3193: Securing L2TP using IPsec.
RFC3205: On the use of HTTP as a Substrate.
RFC3207: SMTP Service Extension for Secure SMTP over Transport Layer Security.
RFC3235: Network Address Translator (NAT)-Friendly Application Design Guidelines.
RFC3257: Stream Control Transmission Protocol Applicability Statement.
RFC3261: SIP: Session Initiation Protocol.
RFC3268: Advanced Encryption Standard (AES) Ciphersuites for Transport Layer Security (TLS).
RFC3303: Middlebox communication architecture and framework.
RFC3316: Internet Protocol Version 6 (IPv6) for Some Second and Third Generation Cellular Hosts.
RFC3329: Security Mechanism Agreement for the Session Initiation Protocol (SIP).
RFC3354: Internet Open Trading Protocol Version 2 Requirements.
RFC3365: Strong Security Requirements for Internet Engineering Task Force Standard Protocols.
RFC3423: XACCT's Common Reliable Accounting for Network Element (CRANE) Protocol Specification Version 1.0.
RFC3436: Transport Layer Security over Stream Control Transmission Protocol.
RFC3447: Public-Key Cryptography Standards (PKCS) #1: RSA Cryptography Specifications Version 2.1.
RFC3470: Guidelines for the Use of Extensible Markup Language (XML) within IETF Protocols.
RFC3481: TCP over Second (2.5G) and Third (3G) Generation Wireless Networks.
RFC3489: STUN - Simple Traversal of User Datagram Protocol (UDP) Through Network Address Translators (NATs).
RFC3499: Request for Comments Summary RFC Numbers 3400-3499.
RFC3501: INTERNET MESSAGE ACCESS PROTOCOL - VERSION 4rev1.
RFC3505: Electronic Commerce Modeling Language (ECML): Version 2 Requirements.
RFC3539: Authentication, Authorization and Accounting (AAA) Transport Profile.
RFC3546: Transport Layer Security (TLS) Extensions.
RFC3552: Guidelines for Writing RFC Text on Security Considerations.
RFC3560: Use of the RSAES-OAEP Key Transport Algorithm in Cryptographic Message Syntax (CMS).
RFC3562: Key Management Considerations for the TCP MD5 Signature Option.
RFC3568: Known Content Network (CN) Request-Routing Mechanisms.
RFC3588: Diameter Base Protocol.
RFC3631: Security Mechanisms for the Internet.
RFC3651: Handle System Namespace and Service Definition.
RFC3656: The Mailbox Update (MUPDATE) Distributed Mailbox Database Protocol.
RFC3712: Lightweight Directory Access Protocol (LDAP): Schema for Printer Services.
RFC3734: Extensible Provisioning Protocol (EPP) Transport Over
RFC3746: Forwarding and Control Element Separation (ForCES) Framework.
RFC3748: Extensible Authentication Protocol (EAP).
RFC3749: Transport Layer Security Protocol Compression Methods.
RFC3760: Securely Available Credentials (SACRED) - Credential Server Framework.
RFC3767: Securely Available Credentials Protocol.
RFC3788: Security Considerations for Signaling Transport (SIGTRAN) Protocols.
RFC3792: Survey of IPv4 Addresses in Currently Deployed IETF Security Area Standards Track and Experimental Documents.
RFC3805: Printer MIB v2.
RFC3819: Advice for Internet Subnetwork Designers.
RFC3820: Internet X.509 Public Key Infrastructure (PKI) Proxy Certificate Profile.
RFC3830: MIKEY: Multimedia Internet KEYing.
RFC3853: S/MIME Advanced Encryption Standard (AES) Requirement for the Session Initiation Protocol (SIP).
RFC3856: A Presence Event Package for the Session Initiation Protocol (SIP).
RFC3867: Payment Application Programmers Interface (API) for v1.0 Internet Open Trading Protocol (IOTP).
RFC3871: Operational Security Requirements for Large Internet Service Provider (ISP) IP Network Infrastructure.
RFC3875: The Common Gateway Interface (CGI) Version 1.1.
RFC3887: Message Tracking Query Protocol.
RFC3903: Session Initiation Protocol (SIP) Extension for Event State Publication.
RFC3920: Extensible Messaging and Presence Protocol (XMPP): Core.
RFC3943: Transport Layer Security (TLS) Protocol Compression Using Lempel-Ziv-Stac (LZS).
RFC3955: Evaluation of Candidate Protocols for IP Flow Information Export (IPFIX).
RFC3983: Using the Internet Registry Information Service (IRIS) over the Blocks Extensible Exchange Protocol (BEEP).
RFC3989: Middlebox Communications (MIDCOM) Protocol Semantics.
RFC3998: Internet Printing Protocol (IPP): Job and Printer Administrative Operations.
RFC4046: Multicast Security (MSEC) Group Key Management Architecture.
RFC4082: Timed Efficient Stream Loss-Tolerant Authentication (TESLA): Multicast Source Authentication Transform Introduction.
RFC4083: Input 3rd-Generation Partnership Project (3GPP) Release 5 Requirements on the Session Initiation Protocol (SIP).
RFC4086: Randomness Requirements for Security. D. Eastlake, 3rd,
RFC4097: Middlebox Communications (MIDCOM) Protocol Evaluation.
RFC4107: Guidelines for Cryptographic Key Management.
RFC4111: Security Framework for Provider-Provisioned Virtual Private Networks (PPVPNs).
RFC4112: Electronic Commerce Modeling Language (ECML) Version 2 Specification.
RFC4130: MIME-Based Secure Peer-to-Peer Business Data Interchange Using HTTP, Applicability Statement 2 (AS2).
RFC4132: Addition of Camellia Cipher Suites to Transport Layer Security (TLS).
RFC4145: TCP-Based Media Transport in the Session Description Protocol (SDP).
RFC4153: XML Voucher: Generic Voucher Language.
RFC4154: Voucher Trading System Application Programming Interface (VTS-API).
RFC4162: Addition of SEED Cipher Suites to Transport Layer Security (TLS).
RFC4168: The Stream Control Transmission Protocol (SCTP) as a Transport for the Session Initiation Protocol (SIP).
RFC4189: Requirements for End-to-Middle Security for the Session Initiation Protocol (SIP).
RFC4217: Securing FTP with
RFC4235: An INVITE-Initiated Dialog Event Package for the Session Initiation Protocol (SIP).
RFC4244: An Extension to the Session Initiation Protocol (SIP) for Request History Information.
RFC4251: The Secure Shell (SSH) Protocol Architecture.
RFC4261: Common Open Policy Service (COPS) Over Transport Layer Security (TLS).
RFC4278: Standards Maturity Variance Regarding the TCP MD5 Signature Option (RFC 2385) and the BGP-4 Specification.
RFC4279: Pre-Shared Key Ciphersuites for Transport Layer Security (TLS).
RFC4297: Remote Direct Memory Access (RDMA) over IP Problem Statement.
RFC4346: The Transport Layer Security (TLS) Protocol Version 1.1.
RFC4347: Datagram Transport Layer Security.
RFC4357: Additional Cryptographic Algorithms for Use with GOST 28147-89, GOST R 34.10-94, GOST R 34.10-2001, and GOST R 34.11-94 Algorithms.
RFC4366: Transport Layer Security (TLS) Extensions.
RFC4398: Storing Certificates in the Domain Name System (DNS).
RFC4492: Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS).
RFC4497: Interworking between the Session Initiation Protocol (SIP) and
RFC4504: SIP Telephony Device Requirements and Configuration.
RFC4507: Transport Layer Security (TLS) Session Resumption without Server-Side State.
RFC4568: Session Description Protocol (SDP) Security Descriptions for Media Streams.
RFC4656: A One-way Active Measurement Protocol (OWAMP).
RFC4680: TLS Handshake Message for Supplemental Data.
RFC4681: TLS User Mapping Extension.