[dns-operations] VeriSign becoming Root-DNSSEC key manager!?
B C
brettlists at gmail.com
Thu Jun 4 23:12:02 UTC 2009
Randy,
On Thu, Jun 4, 2009 at 11:47 PM, Randy Bush<randy at psg.com> wrote:
>>> Well I was at RIPE58 and I don't recall any announcement about
>>> Verisign holding the Keys for root.
>>> Sounds like a journalist getting the wrong end of the stick to me :)
>> This information was perfectly correct, as usual with Monika Ermert.
>
> no, not perfectly. the keys are split, ksk and zsk.
>
> but info was thin at ripe time, and she had to go with what she had.
> and it would make perfect sense for the usg/doc to do exactly the
> opposite of what the public consultation said.
>
It might be the norm for the usg to do the opposite but not sure that
makes it right or sensible.
Brett
More information about the dns-operations
mailing list