WG Ladies and Gents, A new version of the DPS framework draft was submitted adressing issues which was raised during the IESG review. During this review four ADs had positions on the draft - three DISCUSSes and one comment, which called for a few edits and a revised version of the draft.
Except editorial changes and additions to the definitions sections, the following changes are of a less insignificant nature: - the last two paragraphs of section 1.1 (Background) has been deleted as those were the source of much of the discussion. These paragraphs were only there to provide context, and are not essential to the understanding of the document (Unfortunately, the -09 version only had one of the paragraphs deleted, which is why there was a submission of a -10 version directly afterwards). - under 4.1.4 (Specification Administration) there has been a clarification added which exemplifies procedures for specification change management. This is from a comment raised that there are no policy indicator/pointer currently in DNS (as in a X.509 certificate, with the policy OID extention), and that it is difficult for a relying party to know under which DP or DPS a zone manager is currently operating. This situation is also clarified under "Security Considerations" in the draft. - in section 4.5 (Technical security controls) product assurance was mistakenly mentioned twice, as text which was supposed to replace a paragraph instead was simply added. To adress this, the second to last paragraph has been deleted. Please review as soon as practically feasible. All the best, - Fredrik Ljunggren On 2012-09-29, at 11:28, [email protected] wrote: > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > This draft is a work item of the Domain Name System Operations Working Group > of the IETF. > > Title : A Framework for DNSSEC Policies and DNSSEC Practice > Statements > Author(s) : Fredrik Ljunggren > Anne-Marie Eklund Lowinder > Tomofumi Okubo > Filename : draft-ietf-dnsop-dnssec-dps-framework-10.txt > Pages : 28 > Date : 2012-09-29 > > Abstract: > This document presents a framework to assist writers of DNSSEC > Policies and DNSSEC Practice Statements, such as Domain Managers and > Zone Operators on both the top-level and secondary level, who are > managing and operating a DNS zone with Security Extensions (DNSSEC) > implemented. > > In particular, the framework provides a comprehensive list of topics > that should be considered for inclusion into a DNSSEC Policy > definition and Practice Statement. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-dnsop-dnssec-dps-framework > > There's also a htmlized version available at: > http://tools.ietf.org/html/draft-ietf-dnsop-dnssec-dps-framework-10 > > A diff from the previous version is available at: > http://www.ietf.org/rfcdiff?url2=draft-ietf-dnsop-dnssec-dps-framework-10 > > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > DNSOP mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/dnsop _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
