This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/dns-wg@ripe.net/
[dns-wg] DNSSEC - DS RR provisioning
- Next message (by thread): [dns-wg] DNSSEC - DS RR provisioning
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mathieu Arnold
mat at mat.cc
Fri Nov 13 22:41:21 CET 2009
+--On 5 octobre 2009 15:52:06 +0100 Edward Lewis <Ed.Lewis at neustar.biz> wrote: | In case you don't want to go through the slides, I'd like to ask these | questions: | | 1. If you are planning to receive DS records for any reason, how do you | plan to do it? (You don't have to be a TLD to need to do this.) As a registry, through EPP or other home brewed registry/registrar interface. As a standard parent, through a home brewed web interface. | 2. If you are operating DNS for people and are considering DNSSEC, have | you thought about how the DS record will be passed to your customers' | zones parents? about the same as above. | 3. If you operate a recursive server, where to do plan to get DNSSEC | public keys (for example, ISC's DLV)? Well, obviously, there are two cases here : 1) the root is signed, that's the only key I'll ever need (sight), and I'll get it through the proper channels that will be put up at that time. 2) the root is not, DLV is a very nice thing. -- Mathieu Arnold
- Next message (by thread): [dns-wg] DNSSEC - DS RR provisioning
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
[ dns-wg Archives ]