Paul Vixie <p...@redbarn.org> wrote: > > while i agree with these sentiments i have a broader concern. ietf's > mantra is good engineering. if we know now that keytiming has flaws, and > we are only considering publishing it because we know our own record > shows that reaching consensus for keytiming-bis will take a long time, > then it's an implicit indictment (by us) of our own record and habits.
But I thought the flaws discussed in this thread were in terms of presentation rather than engineering. (I haven't reviewed the document yet.) As far as I can tell DNSSEC implementations and deployment are still in a somewhat exploratory phase wrt key management, so it is reasonable to expect it to take a long time to work out how to simplify the document in a sensible way. I expect it to go along with good implementations of canned rollover procedures. Tony. -- f.anthony.n.finch <d...@dotat.at> http://dotat.at/ Forties, Cromarty: East, veering southeast, 4 or 5, occasionally 6 at first. Rough, becoming slight or moderate. Showers, rain at first. Moderate or good, occasionally poor at first. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
