[dns-operations] [DNSSEC] How mandatory is "mandatory algorithm"?

Rose, Scott W. scott.rose at nist.gov
Tue Sep 14 12:39:06 UTC 2010


I made an effort to stress "implementation status" in draft-registry-fixes.  If it is unclear, I can add text (or take suggested text).  

Although this thread should be moved to namedroppers since we're discussing a draft here.

Scott

On Sep 14, 2010, at 5:18 AM, Andrew Sullivan wrote:

> On Tue, Sep 14, 2010 at 09:54:06AM +0100, George Barwood wrote:
>> The other reading would mean that zones signed with say RSA/SHA256 must
>> be signed also with RSA/SHA1, which would be ridiculous.
> 
> Yes, but would it be useful to add a sentence to DNSSEC-bis-updates to
> point out that this is what "mandatory" means?  Or to
> dnssec-registry-fixes?
> 
> A
> 
> -- 
> Andrew Sullivan
> ajs at shinkuro.com
> Shinkuro, Inc.
> _______________________________________________
> dns-operations mailing list
> dns-operations at lists.dns-oarc.net
> https://lists.dns-oarc.net/mailman/listinfo/dns-operations

===================================
Scott Rose
NIST
scottr at nist.gov
+1 301-975-8439
Google Voice: +1 571-249-3671
http://www.dnsops.gov/
===================================




More information about the dns-operations mailing list