DNSOP members,

Today a group of us submitted a draft starting to document the operational 
steps (and issues) around deploying new crypto algorithms within DNSSEC.  This 
builds off of a couple of sessions we've had at DNSSEC Workshops at ICANN 
meetings as well as various mailing list discussion.  This overall discussion 
about deploying new DNSSEC crypto algorithms will continue with a session 
organized by Ondrej Sury at DNS-OARC on April 1 in Buenos Aires and then 
another one at RIPE in Copenhagen.

The goal right now is to document the deployment steps so that there is a 
common understanding and operational guidance can be provided. Ideally in the 
process we may also highlight opportunities for improvement of operational 
processes.

Comments and feedback are definitely welcome.

Thanks,
Dan

Begin forwarded message:

From: <[email protected]<mailto:[email protected]>>
Subject: New Version Notification for 
draft-york-dnsop-deploying-dnssec-crypto-algs-00.txt
Date: March 21, 2016 at 2:29:57 PM EDT
To: "[email protected]<mailto:[email protected]>" 
<[email protected]<mailto:[email protected]>>, Ondrej Sury 
<[email protected]<mailto:[email protected]>>, "Olafur Gudmundsson" 
<[email protected]<mailto:[email protected]>>, Dan York 
<[email protected]<mailto:[email protected]>>, "Paul Wouters" 
<[email protected]<mailto:[email protected]>>


A new version of I-D, draft-york-dnsop-deploying-dnssec-crypto-algs-00.txt
has been successfully submitted by Dan York and posted to the
IETF repository.

Name: draft-york-dnsop-deploying-dnssec-crypto-algs
Revision: 00
Title: Observations on Deploying New DNSSEC Cryptographic Algorithms
Document date: 2016-03-21
Group: Individual Submission
Pages: 9
URL:            
https://www.ietf.org/internet-drafts/draft-york-dnsop-deploying-dnssec-crypto-algs-00.txt
Status:         
https://datatracker.ietf.org/doc/draft-york-dnsop-deploying-dnssec-crypto-algs/
Htmlized:       
https://tools.ietf.org/html/draft-york-dnsop-deploying-dnssec-crypto-algs-00


Abstract:
  As new cryptographic algorithms are developed for use in DNSSEC
  signing and validation, this document captures the steps needed for
  new algorithms to be deployed and enter general usage.  The intent is
  to ensure a common understanding of the typical deployment process
  and potentially identify opportunities for improvement of operations.




Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at 
tools.ietf.org<http://tools.ietf.org>.

The IETF Secretariat


--
Dan York
Senior Content Strategist, Internet Society
[email protected]<mailto:[email protected]>   +1-802-735-1624
Jabber: [email protected]<mailto:[email protected]>
Skype: danyork   http://twitter.com/danyork

http://www.internetsociety.org/




_______________________________________________
DNSOP mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dnsop

Reply via email to