[dns-operations] Update: RSA DNSKEY key size distribution update

[Viktor Dukhovni]

The survey now covers 6.4 million domains, so it is perhaps
time to post an updated distribution of RSA key sizes by
number of domains having at least one RSA DNSKEY of that
bit-length (for key sizes with 1000 or more domains).

  * RSA key sizes above 2048 bits are not popular, and
    perhaps unwise given the adverse impact on UDP.

  * ZSKs are still predominantly 1024 bits but 1280
    is perhaps a good next step.

  * 1536-bit KSKs may be a good next step for those still
    at 1024 bits, but reluctant to go all the way to 2048.

  * The remaining 512-bit keys are disappearing *very*
    slowly, it would be great to see more rapid progress
    on that, especially by:

      - gratisdns.dk:          7211 domains
      - mijnhostingpartner.nl: 3647 domains
      - zeptor.nl:              569 domains

KSK:

  count  | bits 
---------+------
 3369760 | 2048
 1290431 | 1024
  252970 | 1536
   48121 | 4096
   11961 |  512
    2051 | 1280

ZSK:

  count  | bits 
---------+------
 4413543 | 1024
  258652 | 1280
   68767 | 2048
   12385 |  512
    9627 | 4096

-- 
	Viktor.