[dns-operations] VeriSign becoming Root-DNSSEC key manager!?

B C brettlists at gmail.com
Thu Jun 4 23:12:02 UTC 2009


On Thu, Jun 4, 2009 at 11:47 PM, Randy Bush<randy at psg.com> wrote:
>>> Well I was at RIPE58 and I don't recall any announcement about
>>> Verisign holding the Keys for root.
>>> Sounds like a journalist getting the wrong end of the stick to me :)
>> This information was perfectly correct, as usual with Monika Ermert.
> no, not perfectly.  the keys are split, ksk and zsk.
> but info was thin at ripe time, and she had to go with what she had.
> and it would make perfect sense for the usg/doc to do exactly the
> opposite of what the public consultation said.

It might be the norm for the usg to do the opposite but not sure that
makes it right or sensible.


More information about the dns-operations mailing list