DNSSEC Signing Policy & Practice Statement Framework

Document Type Replaced Internet-Draft (individual)
Last updated 2009-12-14 (latest revision 2009-10-20)
Replaced by draft-ietf-dnsop-dnssec-dps-framework
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-dnsop-dnssec-dps-framework
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document presents a framework to assist writers of DNSSEC Signing Policy and Practice Statements such as Regulatory Authorities and Registry Managers on both the TLD and secondary level, who is operating a DNS zone with Security Extensions (DNSSEC) implemented. In particular, the framework provides a comprehensive list of topics that potentially (at the writer's discretion) needs to be covered in a DNSSEC Signing Policy definition and Practice Statement.


Fredrik Ljunggren (fredrik@kirei.se)
Anne-Marie Eklund-Lowinder (amel@iis.se)
Tomofumi Okubo (tookubo@verisign.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)