datatracker.ietf.org
Sign In
Version 4.51.p2, 2013-06-11
Report a bug

DNS Security (DNSSEC) Opt-In
draft-ietf-dnsext-dnssec-opt-in-09

RFC
Document Stream: IETF
Last updated: 2006-06-22
Intended RFC status: Experimental
Other versions: (expired, archived): plain text, pdf, html
Document shepherd:(None)
Shepherd writeup
Consensus:Unknown
IESG State: RFC 4956
IANA Action State: No IC 
Responsible AD: Mark Townsley
Send notices to: <ogud@ogud.com>, <okolkman@ripe.net>

This Internet-Draft is no longer active. Unofficial copies of old Internet-Drafts can be found here:
http://tools.ietf.org/id/draft-ietf-dnsext-dnssec-opt-in.

Abstract:
In the DNS security (DNSSEC) extensions, delegations to unsigned subzones are cryptographically secured. Maintaining this cryptography is not always practical or necessary. This document describes an experimental "Opt-In" model that allows administrators to omit this cryptography and manage the cost of adopting DNSSEC with large zones. This memo defines an Experimental Protocol for the Internet community.

Authors:
Mark Kosters <markk@verisign.com>
Roy Arends <roy@nominet.org.uk>
David Blacka <davidb@verisign.com>

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid)