Skip to main content

DNSSEC Validation Root Priming Through SLP (DNSSEC-ROOTP)
draft-moreau-srvloc-dnssec-priming-02

Document Type Expired Internet-Draft (individual)
Author Thierry Moreau
Last updated 2007-06-15
Stream (None)
Intended RFC status (None)
Formats
Expired & archived
plain text htmlized pdfized bibtex
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)
This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at:
https://www.ietf.org/archive/id/draft-moreau-srvloc-dnssec-priming-02.txt

Abstract

By assigning the SLP (Service Location Protocol, [RFC2608]) UA (User Agent) role to a DNS resolver, the present document opens the door to selective deployment of DNS root nameservice within an administrative domain. This SLP scheme directly addresses the DNS resolver configuration scaling issue. Usage is limited to DNSSEC- enabled root nameservice. Moreover, from the SLP security features, the proposed scheme expands the set of DNS root trust anchor key rollover options. Early DNSSEC support at the rot is made possible with DNSSEC root nameservice substitution, as well as later transparent migration to a unique DNSSEC root.

Authors

Thierry Moreau

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)