[On 01 Apr, @ 10:09, Olaf wrote in "Re: [dnsop] paragraph 4.4.2 in ..."] > > 4.4.2 Storing Keys So Hashes Can Be Regenerated > > Change of title: > 4.4.2 Storing Keys or Hashes? > > > When designing a registry system one should consider if the DNSKEYs > > and/or the corresponding DSs are stored. Storing DNSKEYs will help > > during troubleshooting while the overhead of calculating DS records > > from them is minimal. > > Insert: > On the other hand registries may be hesitant to generate data for > custommers. That could be a reason to only accept what the data > that is published in the DNS; NS and DS RRs. > > > > Having an out-of-band mechanism, such as a Whois database, to find > > out which keys are used to generate DS Resource Records for specific > > owners and/or zones may also help with troubleshooting.
I, for one, have no trouble with this change, -- grtz, - Miek http://www.miek.nl http://www.nlnetlabs.nl . dnsop resources:_____________________________________________________ web user interface: http://darkwing.uoregon.edu/~llynch/dnsop.html mhonarc archive: http://darkwing.uoregon.edu/~llynch/dnsop/index.html
