Last Call Review of draft-ietf-dnsop-dnssec-dps-framework-
I am the assigned Gen-ART reviewer for this draft. For background on
Gen-ART, please see the FAQ at
This draft is ready for publication as an Informational RFC.
Reviewer: Peter Yee
Review Date: 14-July-2012
IETF LC End Date: 17-July-2012
IESG Telechat date: Pending
Summary: This draft provides a framework for the creation of DNSSEC Policies
and Practice Statements.
Major Issues: None
Section 4.4.5 discusses how to handle key compromise. It might be useful to
discuss here or somewhere else in the document how the compromise is
prevented from recurring if there were no attenuating measures in place
beforehand. That might well lead to a revision of the DP or DPS. The draft
doesn't really discuss under what circumstances a document should be
iterated or amended. Of course, that might be considered a meta issue
and outside of the scope of the DP or DPS proper.
In Section 4.6, "behaviour" is spelt in the British manner. While
most assuredly not incorrect, you may wish to spell it in the
Serial commas are used inconsistently. Nothing as egregious as the
example, however. ;-)