[dnssec-key-tf] clarification of TAR requirements

Previous message: [dnssec-key-tf] clarification of TAR requirements

Next message: [dnssec-key-tf] Proposed Mesage to IANA

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Peter Koch
Wed Apr 16 13:41:51 CEST 2008

Jim,

> But not by the TAR. Someone else can be the DNSSEC police. I think  
> it's OK for the TAR to say "the key we have for this TLD doesn't  
> appear to be a live KSK", but no more than that. It's probably not OK  
> IMO for the TAR to refuse a valid key because it's not yet a live KSK.  
> For some definition of valid.

time to disagree again.  While we might not reach consensus on "technical
checks" of the KSK/TA here, I doubt we need this as an explicit
non-requirement and could leave this to IANA's discretion.

> Re-opening the discussions about signing the root. Or a debate on if  
> an NCC effort to set up a TAR undermines or supports the IANA TAR.  
> Since you're not doing that, let's move on.... I think Daniel's  
> captured all the salient points, so can we please focus on the text  
> he's drafted?

I'm trying to, but "move on" in response to such discussion is, well,
unilateral consensus.

> >[8] The TAR is open to receive TAs for any delegated TLD.
> >[?] The TAR maintainers may assist TA/KSK maintainers on a best effort
> >   basis only. Inetersted parties are encouraged to consult (RFC  
> >4641, ...)
> >   for technical and operational guidance.
> 
> Yes!

OK, but it seems the part in '[?]' was already covered by an earlier item.

-Peter

Previous message: [dnssec-key-tf] clarification of TAR requirements

Next message: [dnssec-key-tf] Proposed Mesage to IANA

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ Dnssec-key-tf Archive ]