On 2/14/24, 10:14, "DNSOP on behalf of Yorgos Thessalonikefs" <[email protected] on behalf of [email protected]> wrote:
> (actively while validating) to 4. Recent data shared in dns-oarc showed > mainly 2 collisions observed in the wild and we thought 4 is a safe number. That's certainly reasonable given the reality we live in. If any validator ever witnessed two keys with the same key tag (owner/DNS security algorithm/length as well), it'd be enough to go "huh." If you see three [or more], log it - I'd want to see that. _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
