DNSSEC Roadblock Avoidance

The information below is for an old version of the document
Document Type Expired Internet-Draft (dnsop WG)
Authors Wes Hardaker  , Ólafur Guðmundsson  , Suresh Krishnaswamy 
Last updated 2016-01-02 (latest revision 2015-07-01)
Replaces draft-hardaker-dnsop-dnssec-roadblock-avoidance
Stream IETF
Intended RFC status Best Current Practice
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream WG state In WG Last Call
Document shepherd Tim Wicinski
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document describes problems that a DNSSEC aware resolver/ application might run into within a non-compliant infrastructure. It outline potential detection and mitigation techniques. The scope of the document is to create a shared approache to detect and overcome network issues that a DNSSEC software/system may face.


Wes Hardaker (ietf@hardakers.net)
Ólafur Guðmundsson (ogud@ogud.com)
Suresh Krishnaswamy (suresh@tislabs.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)