%% You should probably cite rfc4641 instead of this I-D. @techreport{ietf-dnsop-dnssec-operational-practices-08, number = {draft-ietf-dnsop-dnssec-operational-practices-08}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-ietf-dnsop-dnssec-operational-practices/08/}, author = {R. (Miek) Gieben and Olaf Kolkman}, title = {{DNSSEC Operational Practices}}, pagetotal = 35, year = 2006, month = mar, day = 9, abstract = {This document describes a set of practices for operating the DNS with security extensions (DNSSEC). The target audience is zone administrators deploying DNSSEC. The document discusses operational aspects of using keys and signatures in the DNS. It discusses issues of key generation, key storage, signature generation, key rollover, and related policies. This document obsoletes RFC 2541, as it covers more operational ground and gives more up-to-date requirements with respect to key sizes and the new DNSSEC specification. This memo provides information for the Internet community.}, }