DNSOP members, Today a group of us submitted a draft starting to document the operational steps (and issues) around deploying new crypto algorithms within DNSSEC. This builds off of a couple of sessions we've had at DNSSEC Workshops at ICANN meetings as well as various mailing list discussion. This overall discussion about deploying new DNSSEC crypto algorithms will continue with a session organized by Ondrej Sury at DNS-OARC on April 1 in Buenos Aires and then another one at RIPE in Copenhagen.
The goal right now is to document the deployment steps so that there is a common understanding and operational guidance can be provided. Ideally in the process we may also highlight opportunities for improvement of operational processes. Comments and feedback are definitely welcome. Thanks, Dan Begin forwarded message: From: <[email protected]<mailto:[email protected]>> Subject: New Version Notification for draft-york-dnsop-deploying-dnssec-crypto-algs-00.txt Date: March 21, 2016 at 2:29:57 PM EDT To: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>>, Ondrej Sury <[email protected]<mailto:[email protected]>>, "Olafur Gudmundsson" <[email protected]<mailto:[email protected]>>, Dan York <[email protected]<mailto:[email protected]>>, "Paul Wouters" <[email protected]<mailto:[email protected]>> A new version of I-D, draft-york-dnsop-deploying-dnssec-crypto-algs-00.txt has been successfully submitted by Dan York and posted to the IETF repository. Name: draft-york-dnsop-deploying-dnssec-crypto-algs Revision: 00 Title: Observations on Deploying New DNSSEC Cryptographic Algorithms Document date: 2016-03-21 Group: Individual Submission Pages: 9 URL: https://www.ietf.org/internet-drafts/draft-york-dnsop-deploying-dnssec-crypto-algs-00.txt Status: https://datatracker.ietf.org/doc/draft-york-dnsop-deploying-dnssec-crypto-algs/ Htmlized: https://tools.ietf.org/html/draft-york-dnsop-deploying-dnssec-crypto-algs-00 Abstract: As new cryptographic algorithms are developed for use in DNSSEC signing and validation, this document captures the steps needed for new algorithms to be deployed and enter general usage. The intent is to ensure a common understanding of the typical deployment process and potentially identify opportunities for improvement of operations. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org<http://tools.ietf.org>. The IETF Secretariat -- Dan York Senior Content Strategist, Internet Society [email protected]<mailto:[email protected]> +1-802-735-1624 Jabber: [email protected]<mailto:[email protected]> Skype: danyork http://twitter.com/danyork http://www.internetsociety.org/
_______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
