[dns-operations] Some DNSSEC trivia

Edward Lewis Ed.Lewis at neustar.biz
Thu Jan 3 17:19:20 UTC 2008


At 10:03 +0100 1/3/08, Florian Weimer wrote:

>too.  Does DNSSEC really add that much additional overhead?

That's not the right question.

Any change to existing operational practices represents risk as well 
as at least a learning curve, if not extra labor and materials in 
operation.  Does DNSSEC increase value or decrease cost of an 
activity greater than the cost and risk of making the change?  Is a 
DNSSEC-related failure, say due to clock skew on the validator, 
acceptable to the bottom line?

-- 
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Edward Lewis                                                +1-571-434-5468
NeuStar

Think glocally.  Act confused.



More information about the dns-operations mailing list