[dns-operations] .com DNSSEC operational message

Matt Larson mlarson at verisign.com
Fri Jan 28 13:59:50 UTC 2011


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Over the next several weeks, Verisign will deploy DNSSEC in the .com
zone.  This message contains operational information related to the
deployment that might be of interest to the Internet operational
community.

The .com DNSSEC deployment consists of the following major milestones:

February 26, 2011: The .com registry system will allow
ICANN-accredited registrars to submit DS records for domains under
.com.  These DS records will not be published in the .com zone until
the .com zone is actually signed.

February 28, 2011: A deliberately unvalidatable .com zone will be
published.  Any DS records for .com that have been submitted by
registrars will be published in the deliberately unvalidatable zone.

March 31, 2011: The .com key material will have been unobscured over
the course of the preceding several days and the .com zone will now be
usable for DNSSEC validation.  DS records for .com should appear in
the root zone on this day.


If you have any questions or comments, please send email to
info at verisign-grs.com or reply to this message.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (Darwin)

iQEVAwUBTULL1tdGiUJktOYBAQICHQf/YOzicIYSMex9NF/9OT1xVkDMl6zRQvsE
QXEqSQcEtfVSxo42/f9xTJPoz6Dw8yvDKIZ2zlAq5mvVXP7fjpZFgJQZ0I4TPyzo
8qiABbxDbeDYwp8OReo2ZFJWoRUsbBA1tOLpFA4KNV8+ydLBa/TBbM59ys4XbPUv
CNoCidGNQCKuXtymw/+/QYLzV1MWMAR8YaMxryiBnV+h2fvv636P3/aYqguj6+KV
bYXn+yHpFv0m3fbLCDqZ8/Grwa4U5ta4HhVRIwICn60cNDk6qTFb7z14zIOLb3J+
tNfYDmfJPcGlJLexLCyuKqNyWolJQVPZSvmhop12Eg5wQDUyw+LNeg==
=yptb
-----END PGP SIGNATURE-----



More information about the dns-operations mailing list