On Sat, 15 Oct 2016, Ólafur Guðmundsson wrote:

I have domains signed by all combinations of signing algorithms and DS
digests as well as Nsec variants

Replace n with 1..4
M with 1..14
Nsec is one of Nsec nsec3 none

I'd be veryinterested if you could create an algorithm called "99" (or something), and we could test that. Anyone not loading the "99" resource is violating the "SHOULD", even if they understand ECDSA.

This would investigate ratio of problems when we want to introduce a new algorithm in the future.

Mikael Abrahamsson    email: swm...@swm.pp.se
DNSOP mailing list

Reply via email to