Re: [DNSOP] requesting WGLC for 5011-security-considerations

Matthijs Mekking writes: > It's been a while since I have had a look at this draft, my apologies. No worries; I'm due to publish the copy that is sitting on my disk with updates to the math. So *my* apologies in return. (and the update should be a bit easier to read

Re: [DNSOP] [Technical Errata Reported] RFC8078 (5049)

Hi all, I gave this discussion some time to converge[0], and also asked for more comments during the (2nd) DNSOP session in Prague. Unless I hear strong objections by Wednesday I'll mark the errata as verified (with the minor clarification provided): Strictly speaking, the CDS record could be

[DNSOP] I-D Action: draft-ietf-dnsop-sutld-ps-08.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Domain Name System Operations WG of the IETF. Title : Special-Use Domain Names Problem Statement Authors : Ted Lemon Ralph

Re: [DNSOP] [art] draft-ietf-dnsop-attrleaf

On 04/08/2017 17:02, Matthew Pounsett wrote: > Do I understand correctly that the intent is to obsolete existing > underscore registries (whether they be actual IANA registries, or just > code points listed in a draft) and move their data to a new, central > registry? This seems sensible to

Re: [DNSOP] [art] draft-ietf-dnsop-attrleaf

On 8/4/2017 9:02 AM, Matthew Pounsett wrote: Do I understand correctly that the intent is to obsolete existing underscore registries (whether they be actual IANA registries, or just code points listed in a draft) and move their data to a new, central registry? This seems sensible to me.

Re: [DNSOP] [art] draft-ietf-dnsop-attrleaf

On 3 August 2017 at 18:36, Dave Crocker wrote: > > > Therefore I propose to: > >1. Have this document define the simple, sole, authoritative mechanism > for registering "top-level" (global scope) underscore names. > >2. Create a separate document that specifies

Re: [DNSOP] Emergency KSK Rollover for locally secure zones.

Thanks Warren. On Fri, Aug 4, 2017 at 4:11 PM, Warren Kumari wrote: > On Thu, Aug 3, 2017 at 6:11 PM, Aanchal Malhotra wrote: > > > > > > On Thu, Aug 3, 2017 at 11:49 PM, Michael StJohns > > > wrote: > >> > >> I answered the

Re: [DNSOP] Emergency KSK Rollover for locally secure zones.

On Thu, Aug 3, 2017 at 6:11 PM, Aanchal Malhotra wrote: > > > On Thu, Aug 3, 2017 at 11:49 PM, Michael StJohns > wrote: >> >> I answered the question that you asked. > > > Yes, thanks Mike. That answers my question about the attack. It was not > clear

Re: [DNSOP] Emergency KSK Rollover for locally secure zones.

Aanchal Malhotra wrote: > > What I am trying to say is that we do not have a solution to this problem > without a back-up key set? ... isn't that true for all kinds of disaster recovery plans? Tony. -- f.anthony.n.finch http://dotat.at/ - I xn--zr8h