Terry Manderson has entered the following ballot position for draft-ietf-dnsop-maintain-ds-03: Discuss
When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-dnsop-maintain-ds/ ---------------------------------------------------------------------- DISCUSS: ---------------------------------------------------------------------- Thanks for writing this and I think its useful for DNSSEC adoption, my DISCUSS is as follows. I have a concern about changing the status of RFC7344 in this document from informational to standards track, especially given that this document builds on, or as I see it updates, 7344. This will surely be raised on the telechat. Especially given I still see gaps in the larger picture, such as: "In this case there is a possibility of setting up some kind of authentication mechanism and submission mechanism that is outside the scope of this document.." for enabling DNSSEC via CDS/CDNSKEY Can you please promote the first 2 paragraphs of the security considerations section to either the abstract or introduction. When reading this document I had almost exactly those words echoing in my head, and having them up front would better set the scene for why this document should exist - since you have written them already. ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- can you please clarify: "In many people's minds, those two operations carry more risk than the first one." I read this as; 'In many people's minds, those two operations carry more risk than operation 2." There are other nits in this document, but I think Stephen has already identified them. _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
