Skip to main content

Applicability Statement: DNS Security (DNSSEC) DNSKEY Algorithm Implementation Status

Document Type Replaced Internet-Draft (individual)
Expired & archived
Author Scott Rose
Last updated 2012-02-01 (Latest revision 2011-11-18)
Replaced by RFC 6944
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-dnsext-dnssec-algo-imp-status
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


The DNS Security Extensions (DNSSEC) requires the use of cryptographic algorithm suites for generating digital signatures over DNS data. There is currently an IANA registry for these algorithms that is incomplete in that it lacks the recommended implementation status of each algorithm. This document provides an applicability statement on algorithm implementation compliance status for DNSSEC implementations. This document lists each algorithm's status based on the current reference. In the case that an algorithm is specified without an implementation status, this document assigns one.


Scott Rose

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)