[dnssec-key-tf] Using the TAR for non-TLD KSKs

Previous message: [dnssec-key-tf] slides for the WG this afternoon

Next message: [dnssec-key-tf] Using the TAR for non-TLD KSKs

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jim Reid
Wed Oct 24 16:30:36 CEST 2007

On Oct 24, 2007, at 14:32, Johan Ihren wrote:

> However, I do see that a plethora of third party key authentication  
> services like this one will again raise the resolver side cost  
> (which is what we want to avoid).

I agree. But surely a TAR that goes into keys other than TLDs will  
just create this problem in a slightly different guise? This could  
also have an unpleasant operational impact on the TAR: perhaps  
looking after many hundreds of (frequently changing?) KSKs rather  
than a much smaller number of (probably fairly stable) TLD KSKs.

Previous message: [dnssec-key-tf] slides for the WG this afternoon

Next message: [dnssec-key-tf] Using the TAR for non-TLD KSKs

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ Dnssec-key-tf Archive ]