Rollover of statically configured resolver keys

Document Type Expired Internet-Draft (dnsop WG)
Last updated 2001-06-28
Stream IETF
Intended RFC status (None)
Expired & archived
plain text pdf html bibtex
Stream WG state WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


Key rollovers will be needed for secure deployment of the DNS secu- rity extensions (DNSSEC). From an end-user perspective these rollovers should be transparent i.e. at any point in time an end-user should be able to verify the chain of trust from a statically config- ured secure entry point.


Olaf Kolkman (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)