Applicability Statement: DNS Security (DNSSEC) DNSKEY Algorithm Implementation Status

Document Type Replaced Internet-Draft (individual)
Author Scott Rose 
Last updated 2012-02-01 (latest revision 2011-11-18)
Replaced by RFC 6944
Stream (None)
Intended RFC status (None)
Expired & archived
plain text html xml htmlized pdfized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-dnsext-dnssec-algo-imp-status
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


The DNS Security Extensions (DNSSEC) requires the use of cryptographic algorithm suites for generating digital signatures over DNS data. There is currently an IANA registry for these algorithms that is incomplete in that it lacks the recommended implementation status of each algorithm. This document provides an applicability statement on algorithm implementation compliance status for DNSSEC implementations. This document lists each algorithm's status based on the current reference. In the case that an algorithm is specified without an implementation status, this document assigns one.


Scott Rose (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)