This document describes how to specify EdDSA keys and signatures in
DNS Security (DNSSEC). It uses the Edwards-curve Digital Security
Algorithm (EdDSA) with the choice of two curves, Ed25519 and Ed448.
Working Group Summary
The definition of the signature format was straight forward as it already
exists in DNSSEC. In addition the computation and verification of the
signature is defined in [I-D.irtf-cfrg-eddsa].
The only discussion was upon the use of using Ed25519ctx versus
Ed25519, but the consensus was reached easily. The same discussion
also occurred for draft-ietf-ipsecme-eddsa and draft-ietf-curdle-pkix
with the same conclusion. The absence of context follows the
recommendations of Section 10.3 of I-D.irtf-cfrg-eddsa and avoids
The document has been reviewed carefully. Examples have been
generated with prototypes. Although no implementations have
been reported in the document, there are ongoing effort.
Document Shepherd: Daniel Migault, AD: Stephen Farrell