DNSSEC Validation Root Priming Through SLP (DNSSEC-ROOTP)
draft-moreau-srvloc-dnssec-priming-02
| Document | Type | Expired Internet-Draft (individual) | |
|---|---|---|---|
| Author | Thierry Moreau | ||
| Last updated | 2007-06-15 | ||
| Stream | (None) | ||
| Intended RFC status | (None) | ||
| Formats |
Expired & archived
plain text
htmlized
pdfized
bibtex
|
||
| Stream | Stream state | (No stream defined) | |
| Consensus boilerplate | Unknown | ||
| RFC Editor Note | (None) | ||
| IESG | IESG state | Expired | |
| Telechat date | (None) | ||
| Responsible AD | (None) | ||
| Send notices to | (None) |
https://www.ietf.org/archive/id/draft-moreau-srvloc-dnssec-priming-02.txt
Abstract
By assigning the SLP (Service Location Protocol, [RFC2608]) UA (User Agent) role to a DNS resolver, the present document opens the door to selective deployment of DNS root nameservice within an administrative domain. This SLP scheme directly addresses the DNS resolver configuration scaling issue. Usage is limited to DNSSEC- enabled root nameservice. Moreover, from the SLP security features, the proposed scheme expands the set of DNS root trust anchor key rollover options. Early DNSSEC support at the rot is made possible with DNSSEC root nameservice substitution, as well as later transparent migration to a unique DNSSEC root.
Authors
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)