Last Call Review of draft-ietf-dnsop-rfc8624-bis-07
review-ietf-dnsop-rfc8624-bis-07-genart-lc-mishra-2025-03-08-00
review-ietf-dnsop-rfc8624-bis-07-genart-lc-mishra-2025-03-08-00
I am the assigned Gen-ART reviewer for this draft. The General Area Review Team (Gen-ART) reviews all IETF documents being processed by the IESG for the IETF Chair. Please treat these comments just like any other last call comments. For more information, please see the FAQ at <https://wiki.ietf.org/en/group/gen/GenArtFAQ>. Document: draft-ietf-dnsop-rfc8624-bis-?? Reviewer: Gyan Mishra Review Date: 2025-03-08 IETF LC End Date: 2025-03-16 IESG Telechat date: Not scheduled for a telechat Summary: The DNSSEC protocol makes use of various cryptographic algorithms to provide authentication of DNS data and proof of non-existence. To ensure interoperability between DNS resolvers and DNS authoritative servers, it is necessary to specify both a set of algorithm implementation requirements and usage guidelines to ensure that there is at least one algorithm that all implementations support. This document updates RFC8624 by moving the canonical source of algorithm implementation requirements and usage guidance for DNSSEC from RFC8624 to an IANA registry. This is done both to allow the list to be more easily updated, and to allow the list to be more easily referenced. Future extensions to this registry can be made under new, incremental update RFCs. The document does not change the status (MUST, MAY, RECOMMENDED, etc) of any of the algorithms listed in RFC8624; that is the work of future documents. I reviewed the latest draft and believe it’s ready for publication. Major issues: None Minor issues: None Nits/editorial comments: None