A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Domain Name System Operations WG of the IETF.
Title : Secret Key Transaction Authentication for DNS (TSIG)
Authors : Francis Dupont
I have read the draft and support it advancing. It is a good
replacement for RFC 6944.
Scott
On 2 Oct 2018, at 8:51, Tim Wicinski wrote:
The chairs and the authors of this document feel that the
document is in solid shape to proceed to WGLC.
This starts a Working Group Last Call for
draft
WGLC comment to draft-ietf-dnsop-algorithm-update-02
Section 3.2 is "recommendations for operators".
There is texts that discuss ECDSAP256SHA256 only in section 3.2.
However, RSASHA256 is still usable.
Please add text about other algorithms.
if there is a table similar to section 3.1, it will hel
Sorry, one more comment on section 11.1:
"DSO permits zero round-trip operation using TCP Fast Open [RFC7413]
with TLS 1.3 [RFC8446] 0-RTT to reduce or eliminate round trips in
session establishment.“
This sounds like TCP Fast Open and TLS 0-RTT can only be used together. However
these
Hi Ted,
sorry for the delay, however, as you performed a couple of changes it took me a
while to re-review. I believe I’m unfortunately not fully ready to release my
discuss at this point, but close..
Regarding my first discuss point (delayed ACKs aso.) I think the text improved
and I would l
One minor comment (as I’m reviewing the updated version…)
> Am 02.08.2018 um 08:35 schrieb Ted Lemon :
>
> 4) sec 5.1 "It is a common
>convention that protocols specified to run over TLS are given IANA
>service type names ending in "-tls"."
> Not sure this is true. Isn't it usually just a