Skip to main content

Zone KEY RRSet Signing Procedure

Document Type Expired Internet-Draft (dnssec WG)
Expired & archived
Authors Ólafur Guðmundsson , Edward P. Lewis
Last updated 1997-11-19
RFC stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Additional resources Mailing list discussion
Stream WG state WG Document
Document shepherd (None)
IESG IESG state Expired
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


Under the security extensions to DNS, as defined in RFC 2065 and RFC 2137, a secured zone will have a KEY RRSet associated with the domain name at the apex of the zone. This document covers the manner in which this RRSet is generated, signed, and inserted into the name servers.


Ólafur Guðmundsson
Edward P. Lewis

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)