[dns-operations] [DNSSEC] How mandatory is "mandatory algorithm"?

Andrew Sullivan ajs at shinkuro.com
Tue Sep 14 09:18:36 UTC 2010


On Tue, Sep 14, 2010 at 09:54:06AM +0100, George Barwood wrote:
> The other reading would mean that zones signed with say RSA/SHA256 must
> be signed also with RSA/SHA1, which would be ridiculous.

Yes, but would it be useful to add a sentence to DNSSEC-bis-updates to
point out that this is what "mandatory" means?  Or to
dnssec-registry-fixes?

A

-- 
Andrew Sullivan
ajs at shinkuro.com
Shinkuro, Inc.



More information about the dns-operations mailing list